NOCC Webmail 1.0 allows remote attackers to obtain sensitive information via a direct request to (1) the profiles directory, which leaks e-mail addresses contained in filenames of profiles, and (2) the tmp directory, which lists names of uploaded attachments.
References
Configurations
History
No history.
Information
Published : 2006-02-25 11:02
Updated : 2024-02-28 10:42
NVD link : CVE-2006-0893
Mitre link : CVE-2006-0893
CVE.ORG link : CVE-2006-0893
JSON object : View
Products Affected
nocc
- nocc
CWE