Loading
Generated remediation guidance and an executive summary. No account required.
Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) %255c (double-encoded backslash) in the name parameter.
Use CWE-22, Smartertools vendor hub and Smartermail product page to widen CVE-2010-3486 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-52691, CVE-2026-24423 and CVE-2026-23760 for nearby disclosures in the same product family.