VYPR
High severity8.8NVD Advisory· Published Jan 14, 2018· Updated Jun 17, 2026

CVE-2018-5700

CVE-2018-5700

Description

Winmail Server through 6.2 allows remote code execution by authenticated users who leverage directory traversal in a netdisk.php copy_folder_file call (in inc/class.ftpfolder.php) to move a .php file from the FTP folder into a web folder.

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.