Information leak with POP3 _DUMP command, directory traversal with IMAP RENAME command, directory traversal and crossite scripting with Web interface.
vulners.com/securityvulns/securityvulns:doc:11581
vulners.com/securityvulns/securityvulns:doc:11583
vulners.com/securityvulns/securityvulns:doc:11619