Unrated severityNVD Advisory· Published Jan 11, 2001· Updated Apr 16, 2026

CVE-2001-1044

Description

Basilix Webmail 0.9.7beta, and possibly other versions, stores *.class and *.inc files under the document root and does not restrict access, which could allows remote attackers to obtain sensitive information such as MySQL passwords and usernames from the mysql.class file.

Affected products

Basilix/Basilix Webmail
cpe:2.3:a:basilix:basilix_webmail:0.9.7_beta:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/archive/1/155897nvdExploitPatchVendor Advisory
www.securityfocus.com/bid/2198nvdExploitPatchVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/5934nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000