Security problems with TWIG webmail system

22

Author: JT Smith

“Twig is designed to allow the use of virtual hosting, unfortunatly the script
that checks this fails to check for user suplied input, thus allowing
anyone to submit malicious values as the configuration directory.” From Help Net Security.

Category:

  • Linux