HSC Mailinspector 漏洞列表
共找到 4 个与 HSC Mailinspector 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2024-34470: HSC Mailinspector 5.2.17-3 through 5.2.18 - Local File Inclusion POC
An Unauthenticated Path Traversal vulnerability exists in the /public/loaderphp file The path parameter does not properly filter whether the file and directory passed are part of the webroot, allowing an attacker to read arbitrary files on the server. -
CVE-2024-34470: HSC Mailinspector 5.2.17-3 through 5.2.18 - Local File Inclusion POC
An Unauthenticated Path Traversal vulnerability exists in the /public/loaderphp file The path parameter does not properly filter whether the file and directory passed are part of the webroot, allowing an attacker to read arbitrary files on the server. -
HSC Mailinspector 任意文件读取漏洞(CVE-2024-34470) 无POC
HSC Mailinspector 是一种邮件安全解决方案,旨在保护企业和组织免受各种电子邮件威胁的影响。它提供了一系列功能,包括针对垃圾邮件、恶意软件、垃圾邮件和其他网络威胁的过滤和检测。 -
HSC Mailinspector 存在目录遍历漏洞(CVE-2024-34470) 无POC
HSC Mailinspector存在目录遍历漏洞,未经身份验证的用户可以滥用/public/loader.php文件中存在的目录遍历漏洞。path参数无法正确筛选传递的文件和目录是否为webroot的一部分,从而使攻击者能够读取服务器上的任意文件。