2 matches found
EUVD-2021-2577
Malware in sbrugna...
Apache James Server 2.3.2 Insecure User Creation Arbitrary File Write
This module exploits a vulnerability that exists due to a lack of input validation when creating a user. Messages for a given user are stored in a directory partially defined by the username. By creating a user with a directory traversal payload as the username, commands can be written to a given...