Vulnerabilities > Magicwinmail > Winmail Server > 6.2

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-14	CVE-2018-5700	Path Traversal vulnerability in Magicwinmail Winmail Server 6.2 Winmail Server through 6.2 allows remote code execution by authenticated users who leverage directory traversal in a netdisk.php copy_folder_file call (in inc/class.ftpfolder.php) to move a .php file from the FTP folder into a web folder. network low complexity magicwinmail CWE-22	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.