7.1 High
AI Score
Confidence
Low
0.053 Low
EPSS
Percentile
93.1%
Macallan Mail Solution 2.8.4.6 (Build 260), and possibly earlier versions, allows remote attackers to bypass authentication in the web interface via an HTTP GET request with two slashes (“//”) after the server name.
secunia.com/advisories/10861
securitytracker.com/id?1009030
www.osvdb.org/3926
www.securityfocus.com/bid/9646
exchange.xforce.ibmcloud.com/vulnerabilities/15194
testzone.secunia.com/advisories/10861