CVE-2006-3566

medium

Description

search.results.php in HiveMail 3.1 and earlier allows remote attackers to obtain the installation path via certain manipulations related to the (1) searchdate and (2) folderids parameters.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/27696

http://www.osvdb.org/27104

http://securitytracker.com/id?1016531

http://pridels0.blogspot.com/2006/07/hivemail-vuln.html

Details

Source: Mitre, NVD

Published: 2006-07-13

Updated: 2026-04-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N