CVE-2021-26294 – An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. …

7 March 2021

Vuln ID: CVE-2021-26294

Published: 2021-03-07 04:15:12Z

Description: An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. They allow directory traversal to read files (such as a data/settings/settings.xml file containing admin panel credentials), as demonstrated by dav/server.php/files/personal/%2e%2e when using the caldav_public_user account (with caldav_public_user as its password).

Source: NVD.NIST.GOV

Date:

7 March 2021

Categorie(s):

NVD

Tag(s):

NVD

Phishing-as-a-Service Platform LabHost Seized by Authorities18 April 2024
Armis Acquires AI-based Vulnerability Detection Firm Silk Security18 April 2024
DNS Attacks: Protecting Your Digital Assets with Advanced Security18 April 2024
Cisco creates architecture to improve security and sell you new switches18 April 2024
Cisco unveils Hypershield to enhance security across data centers and cloud platforms18 April 2024