Total vulnerabilities in the database
Open WebMail 2.30 and earlier, when use_syshomedir is disabled or create_syshomedir is enabled, creates new directories before authenticating, which allows remote attackers to create arbitrary directories.
Software | From | Fixed in |
---|---|---|
open_webmail / open_webmail | 1.7 | 1.7.x |
open_webmail / open_webmail | 1.81 | 1.81.x |
open_webmail / open_webmail | 2.30 | 2.30.x |
open_webmail / open_webmail | 1.71 | 1.71.x |
open_webmail / open_webmail | 1.8 | 1.8.x |
open_webmail / open_webmail | 1.90 | 1.90.x |