CVE-2006-0937

Publication date

2006-02-28 11:00:00

Family

mitre

State

PUBLISHED

Description

U.N.U. Mailgust 1.9 allows remote attackers to obtain sensitive information via a direct request to index.php with method=showfullcsv, which reveals the POP3 server configuration, including account name and password.