Unrated severityNVD Advisory· Published May 18, 2005· Updated Jun 16, 2026
CVE-2005-1657
CVE-2005-1657
Description
Multiple directory traversal vulnerabilities in Mercur Messaging 2005 SP2 allow remote attackers to perform unauthorized file operations via the Folder.Id parameter to (1) deletefolder.ctml, (2) deletemessage.ctml, (3) origmessage.ctml, or (4) readmessage.ctml, the Message.Id parameter to editmessage.ctml, or the (5) Message.Command parameter to messages.ctml.
Affected products
2cpe:2.3:a:mercur:mercur_messaging:2005_sp2:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mercur:mercur_messaging:2005_sp2:*:*:*:*:*:*:*
- (no CPE)range: 2005 SP2
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.