Vulnerabilities > Magicwinmail > Winmail Server > 6.1

DATE	CVE	VULNERABILITY TITLE	RISK
2017-06-24	CVE-2017-9846	Path Traversal vulnerability in Magicwinmail Winmail Server 6.1 Winmail Server 6.1 allows remote code execution by authenticated users who leverage directory traversal in a netdisk.php move_folder_file call to move a .php file from the FTP folder into a web folder. network low complexity magicwinmail CWE-22	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.