CVE-2013-6827

PineApp Mail-SeCure - Path Traversal via admin/viewmsg.php msg Parameter

Title source: llm
STIX 2.1

Description

Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.

References (1)

Core 1
Core References
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0133.html

Scores

EPSS 0.0144
EPSS Percentile 70.0%

Details

CWE
CWE-22
Status published
Products (1)
pineapp/mail-secure
Published Nov 20, 2013
Tracked Since Feb 18, 2026