CVEs-PoC/2012/CVE-2012-2139.md at 2074f0373b69ece25fb8dcf645ccc2a69cddc92b

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-07 17:36:58 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the to parameter.

POC

Reference

https://github.com/mikel/mail/commit/29aca25218e4c82991400eb9b0c933626aefc98f
https://github.com/mikel/mail/commit/29aca25218e4c82991400eb9b0c933626aefc98f

Github

No PoCs found on GitHub currently.

792 B Raw Blame History

CVE-2012-2139

Description

POC

Reference

Github

792 B

Raw Blame History