Directory traversal vulnerability in compose.pl in @Mail 4.3 and earlier for Windows allows remote attackers to upload arbitrary files to arbitrary locations via a .. (dot dot) in the unique parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Atmail |
Atmail |
4.3 |
4.3 |
References