2 matches found
CVE-2023-4595
An information exposure vulnerability has been found, the exploitation of which could allow a remote user to retrieve sensitive information stored on the server such as credential files, configuration files, application files, etc., simply by appending any of the following parameters to the end o...
CVE-2023-4595
CVE-2023-4595 affects BVRP Software SLmail (Avanquest SLmail) server, specifically version 5.5.0.4433. The vulnerability is an information-disclosure flaw permitting a remote attacker to retrieve sensitive server-held files (credentials, configuration, application files) by appending certain URL ...