CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Endymion: >> Sake Mail >> 1.0.30 Security Vulnerabilities

CVE-2002-0418

Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the param_name parameter.

CVSS Score

5.0

EPSS Score

0.003

Published

2002-08-12

Page 1

Vulnerabilities

Vulnerable Software

Endymion: >> Sake Mail >> 1.0.30 Security Vulnerabilities

Products

Pricing

Contact Us