Security Advisory

CVE-2018-5700

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-01-14 20:00:00

Last updated 2024-08-05 05:40:51

Assigner mitre

State PUBLISHED

Description

Winmail Server through 6.2 allows remote code execution by authenticated users who leverage directory traversal in a netdisk.php copy_folder_file call (in inc/class.ftpfolder.php) to move a .php file from the FTP folder into a web folder.

← Browse all CVEs View on cve.org ↗