Unrated severityNVD Advisory· Published Mar 4, 2021· Updated Aug 3, 2024
CVE-2021-26293
CVE-2021-26293
Description
An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled. They allow directory traversal to create new files (such as an executable file under the web root). This is related to DAVServer.php in 8.x and DAV/Server.php in 7.x.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- AfterLogic/Aurora and WebMail Prodescription
- Range: <=8.5.3
- Range: <=8.5.3
Patches
Vulnerability mechanics
References
1- auroramail.wordpress.com/2021/02/03/addressing-dav-related-vulnerability-in-webmail-and-aurora/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.