CVE-2019-12938

CVE-2019-12938

The Roundcube component of Analogic Poste.io 2.1.6 uses .htaccess to protect the logs/ folder, which is effective with the Apache HTTP Server but is ineffective with nginx. Attackers can read logs via the webmail/logs/sendmail URI.

Source: CVE-2019-12938

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다