VYPR
Unrated severityNVD Advisory· Published Oct 23, 2005· Updated Jun 16, 2026

CVE-2005-3288

CVE-2005-3288

Description

Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message.

Affected products

2
  • Rockliffe/Express2 versions
    cpe:2.3:a:rockliffe:mailsite_express:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:rockliffe:mailsite_express:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.