Approved changes feed: RSS · Atom

cpe:2.3:a:analogic:poste.io:2.1.6:*:*:*:*:*:*:*

part: a version: 2.1.6 update: *

VendorAnalogic (e3c10263-b6d7-5f56-8dde-96aefb56e3a7)
ProductPoste.Io (9a82858c-4315-5731-9031-406278d9acb1)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:docker/analogic/poste.io purl2cpe 2026-06-01 10:12:30.153478

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-12938 vulnerable 2026-06-08 05:12:40.667085 Details available
The Roundcube component of Analogic Poste.io 2.1.6 uses .htaccess to protect the logs/ folder, which is effective with the Apache HTTP Server but is ineffective with nginx. Attackers can read logs via the webmail/logs/sendmail URI.
Published: 2019-06-24T13:07:31.000Z
Updated: 2024-08-04T23:32:55.589Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.