Title:IceWarp Mail Server 路径遍历漏洞 (CVE-2015-1503) Description:Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the file parameter to a webmail/client/skins/default/css/css.php page or .../. (dot dot dot slash dot) in the (2) script or (3) style parameter to webmail/old/calendar/minimizer/index.php.
Description
IceWarp Mail Server versions prior to 11.1.1 suffer from a directory traversal vulnerability.
File Snapshot
id: CVE-2015-1503
info:
name: IceWarp Mail Server <11.1.1 - Directory Traversal
author: 0x_Akok
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →