Description

Roundcube Webmail 1.1.x before 1.1.2 allows remote attackers to obtain sensitive information by reading files in the (1) config, (2) temp, or (3) logs directory.

Remediation

References

CVE-2015-5383

Related Vulnerabilities

PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5095)

Jboss EAP CVE-2017-12189 Vulnerability (CVE-2017-12189)

phpMyAdmin Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3055)

Oracle HTTP Server CVE-2022-21271 Vulnerability (CVE-2022-21271)

MySQL CVE-2020-2780 Vulnerability (CVE-2020-2780)

Severity

High

Classification

CVE-2015-5383 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities