VYPR
Unrated severityNVD Advisory· Published Jun 11, 2007· Updated Jun 16, 2026

CVE-2007-3172

CVE-2007-3172

Description

Directory traversal vulnerability in demo/pop3/error.php in Uebimiau Webmail allows remote attackers to determine the existence of arbitrary directories via an absolute pathname and .. (dot dot) in the selected_theme parameter.

Affected products

4
  • Uebimiau/Uebimiau3 versions
    cpe:2.3:a:uebimiau:uebimiau:2.7.10:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:uebimiau:uebimiau:2.7.10:*:*:*:*:*:*:*
    • cpe:2.3:a:uebimiau:uebimiau:2.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:uebimiau:uebimiau:2.7.9:*:*:*:*:*:*:*
  • Uebimiau/Webmailllm-fuzzy

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.