CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Trlinux: >> Postaci Webmail >> 1.1.3 Security Vulnerabilities

CVE-2000-1100

The default configuration for PostACI webmail system installs the /includes/global.inc configuration file within the web root, which allows remote attackers to read sensitive information such as database usernames and passwords via a direct HTTP GET request.

CVSS Score

7.5

EPSS Score

0.029

Published

2001-01-09

Page 1

Vulnerabilities

Vulnerable Software

Trlinux: >> Postaci Webmail >> 1.1.3 Security Vulnerabilities

Products

Pricing

Contact Us