COREMAIL XT 3.0.1 to XT 5.0.9
These versions of the system have configuration file information disclosure vulnerability, including database connection user name, password and other sensitive information. Through the collection of these sensitive information, attackers may further attempt to obtain permissions and data.
This vulnerability can cause the disclosure of COREMAIL configuration file information, including sensitive information such as user name and password of database connection. Through the collection of these sensitive information, attackers may further attempt to obtain permissions and data.
git clone https://github.com/Osyanina/Coremail-scanner.git
cd Coremail-scanner
Put the target in target.txt In the file
cmd coremail-scanner.exe