VYPR
Unrated severityNVD Advisory· Published Dec 19, 2000· Updated Jun 16, 2026

CVE-2000-0911

CVE-2000-0911

Description

IMP 2.2 and earlier allows attackers to read and delete arbitrary files by modifying the attachment_name hidden form variable, which causes IMP to send the file to the attacker as an attachment.

Affected products

2
  • cpe:2.3:a:horde:imp:2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:horde:imp:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:horde:imp:2.2:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.