{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-29T06:43:59.128","vulnerabilities":[{"cve":{"id":"CVE-2008-5991","sourceIdentifier":"cve@mitre.org","published":"2009-01-28T15:30:00.343","lastModified":"2026-06-16T23:01:22.230","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Directory traversal vulnerability in docs.php in MailWatch for MailScanner 1.0.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the doc parameter."},{"lang":"es","value":"Vulnerabilidad de salto de directorio en docs.php en MailWatch para MailScanner v1.0.4 y anteriores, permite a atacantes remotos incluir y ejecutar ficheros de su elección a través de ..(punto punto) en el parámetro \"doc\"."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:mailscanner:mailscanner:*:*:*:*:*:*:*:*","matchCriteriaId":"776D8F2D-5AA1-4E3A-8D15-8055E79378C2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:*:*:*:*:*:*:*:*","versionEndIncluding":"1.0.4","matchCriteriaId":"8F483ABF-1A03-4BF9-BAFF-A7FE952D4EA1"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:0.3:beta:*:*:*:*:*:*","matchCriteriaId":"EEA8B1F1-A8D4-4EFF-9992-E52792A62636"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:0.4:*:*:*:*:*:*:*","matchCriteriaId":"60DD9D3A-0C5B-4289-8A8D-347EBAD753AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:0.5:*:*:*:*:*:*:*","matchCriteriaId":"BF886C52-55FB-40E1-91BD-58390305B2B6"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:0.5.1:*:*:*:*:*:*:*","matchCriteriaId":"68CF2B5E-1ED6-49BF-81A2-9D8708BF18A8"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:1.0:*:*:*:*:*:*:*","matchCriteriaId":"21DCEC14-8920-4DE5-8535-27976821432C"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:1.0.2:*:*:*:*:*:*:*","matchCriteriaId":"504623E8-9B3C-4BB1-9652-2724D06047FB"},{"vulnerable":true,"criteria":"cpe:2.3:a:mailwatch:mailwatch:1.0.3:*:*:*:*:*:*:*","matchCriteriaId":"8A50AD90-0F42-401C-B268-75550621C85D"}]}]}],"references":[{"url":"http://secunia.com/advisories/31994","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/31378","source":"cve@mitre.org","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45393","source":"cve@mitre.org"},{"url":"https://www.exploit-db.com/exploits/6552","source":"cve@mitre.org"},{"url":"http://secunia.com/advisories/31994","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/31378","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45393","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://www.exploit-db.com/exploits/6552","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}