CVE-2001-1045
Basilix Webmail 1.0.3beta - Directory Traversal via request_id[DUMMY] Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2001-1045. PoCs published by karol _.
AI-analyzed exploit summary The exploit describes a file inclusion vulnerability in Basilix webmail due to improper input validation, allowing remote attackers to read arbitrary files or execute PHP files via path traversal. The provided URL demonstrates the attack vector.
Description
Directory traversal vulnerability in basilix.php3 in Basilix Webmail 1.0.3beta and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the request_id[DUMMY] parameter.
Exploits (1)
The exploit describes a file inclusion vulnerability in Basilix webmail due to improper input validation, allowing remote attackers to read arbitrary files or execute PHP files via path traversal. The provided URL demonstrates the attack vector.