Back to search
CVE-2000-0977
Published: Jan 22, 2001
Modified: Aug 8, 2024
PUBLISHED
Description
mailfile.cgi CGI program in MailFile 1.10 allows remote attackers to read arbitrary files by specifying the target file name in the "filename" parameter in a POST request, which is then sent by email to the address specified in the "email" parameter.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20001011 Mail File POST Vulnerability
mailing-list
x_refsource_BUGTRAQ
mailfile-post-file-read(5358)
vdb-entry
x_refsource_XF
1807
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now