← Voltar para CVEs
CVE-2005-3287
N/ADescricao
Incomplete blacklist vulnerability in Mailsite Express allows remote attackers to upload and possibly execute files via attachments with executable extensions such as ASPX, which are not converted to .TXT like other dangerous extensions, and which can be directly requested from the cache directory.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado10/23/2005
Ultima modificacao4/16/2026
Fontenvd
Avistamentos honeypot0
Produtos afetados
rockliffe:mailsite_express
Referencias
http://securitytracker.com/id?1015063(cve@mitre.org)
http://securitytracker.com/id?1015063(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.