CVE-2004-2493

Name of the Vulnerable Software and Affected Versions: Groupmax World Wide Web (GmaxWWW) versions 2 and 3 Groupmax Desktop versions 5 and 6 Groupmax Desktop for Jichitai (affected versions not specified)

Description: The issue allows remote authenticated users to read arbitrary .html files via the template name parameter. This could potentially lead to unauthorized access to sensitive information.

Recommendations: For Groupmax World Wide Web (GmaxWWW) versions 2 and 3, restrict access to the template name parameter to minimize the risk of exploitation. For Groupmax Desktop versions 5 and 6, avoid using the template name parameter in affected API endpoints until the issue is resolved. For Groupmax Desktop for Jichitai, at the moment, there is no information about a newer version that contains a fix for this vulnerability.