← Back to CVEs
CVE-2001-1044
N/ADescription
Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote attackers to obtain sensitive information such as MySQL passwords and usernames from the mysql.class file.
CVE Details
CVSS v3.1 ScoreN/A
Published1/11/2001
Last Modified4/3/2025
Sourcenvd
Honeypot Sightings0
Affected Products
basilix:basilix_webmail
References
http://www.securityfocus.com/archive/1/155897(cve@mitre.org)
http://www.securityfocus.com/bid/2198(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5934(cve@mitre.org)
http://www.securityfocus.com/archive/1/155897(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/2198(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5934(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.