CVE-2015-2971

Directory traversal vulnerability in Seeds acmailer before 3.8.18 and 3.9.x before 3.9.12 Beta allows remote authenticated users to delete arbitrary files via a crafted string.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:seeds:acmailer:*:*:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.0:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.1:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.2:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.3:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.4:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.5:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.6:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.7:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.8:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.9:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.10:beta:*:*:*:*:*:*
cpe:2.3:a:seeds:acmailer:3.9.11:beta:*:*:*:*:*:*

History

21 Nov 2024, 02:28

Type Values Removed Values Added
References () http://jvn.jp/en/jp/JVN64051989/index.html - Vendor Advisory () http://jvn.jp/en/jp/JVN64051989/index.html - Vendor Advisory
References () http://jvndb.jvn.jp/jvndb/JVNDB-2015-000098 - Vendor Advisory () http://jvndb.jvn.jp/jvndb/JVNDB-2015-000098 - Vendor Advisory
References () http://www.acmailer.jp/info/de.cgi?id=58 - Vendor Advisory () http://www.acmailer.jp/info/de.cgi?id=58 - Vendor Advisory

Information

Published : 2015-07-19 10:59

Updated : 2024-11-21 02:28


NVD link : CVE-2015-2971

Mitre link : CVE-2015-2971

CVE.ORG link : CVE-2015-2971


JSON object : View

Products Affected

seeds

  • acmailer
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')