95 matches found
CVE-2024-6048
Openfind's MailGates and MailAudit fail to properly filter user input when analyzing email attachments. An unauthenticated remote attacker can exploit this vulnerability to inject system commands and execute them on the remote server...
CVE-2024-6048
CVE-2024-6048 affects Openfind MailGates and MailAudit. The flaw: improper filtering of input in analysis of email attachments enables an unauthenticated remote attacker to inject and execute system commands on the affected server. Impact per metrics is high on confidentiality, integrity, and ava...
CVE-2024-6048 Openfind MailGates and MailAudit - OS Command Injection
Openfind's MailGates and MailAudit fail to properly filter user input when analyzing email attachments. An unauthenticated remote attacker can exploit this vulnerability to inject system commands and execute them on the remote server...
CVE-2024-6048 Openfind MailGates and MailAudit - OS Command Injection
Openfind's MailGates and MailAudit fail to properly filter user input when analyzing email attachments. An unauthenticated remote attacker can exploit this vulnerability to inject system commands and execute them on the remote server...
Openfind Information Technology MailAudit Operating System Command Injection Vulnerability
Openfind Information Technology MailAudit is a software for enterprise email security auditing from Openfind Information Technology Taiwan, China. An operating system command injection vulnerability exists in Openfind Information Technology MailAudit, which originates from an inability to properl...
CVE-2024-5400
Openfind Mail2000 does not properly filter parameters of specific CGI. Remote attackers with regular privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5400
Openfind Mail2000 does not properly filter parameters of specific CGI. Remote attackers with regular privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5400
CVE-2024-5400 affects Openfind Mail2000, where a CGI parameter handling vulnerability enables OS command injection. Multiple sources describe that remote attackers with regular privileges can exploit improper filtering of specific CGI parameters to execute arbitrary system commands on the remote ...
CVE-2024-5400 Openfind Mail2000 - OS Command Injection
Openfind Mail2000 does not properly filter parameters of specific CGI. Remote attackers with regular privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5400 Openfind Mail2000 - OS Command Injection
Openfind Mail2000 does not properly filter parameters of specific CGI. Remote attackers with regular privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5399
Openfind Mail2000 does not properly filter parameters of specific API. Remote attackers with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5399
Openfind Mail2000 does not properly filter parameters of specific API. Remote attackers with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5399 Openfind Mail2000 - OS Command Injection
Openfind Mail2000 does not properly filter parameters of specific API. Remote attackers with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5399 Openfind Mail2000 - OS Command Injection
Openfind Mail2000 does not properly filter parameters of specific API. Remote attackers with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the remote server...
CVE-2024-5399
Openfind Mail2000 is affected by an OS command injection vulnerability (CVE-2024-5399) stemming from improper filtering of parameters in a specific API. The flaw allows remote attackers with administrative privileges to execute arbitrary system commands on the remote server. The issue is reported...
Openfind Mail2000 操作系统命令注入漏洞
Openfind Mail2000 is a Web-based e-mail system. An operating system command injection vulnerability exists in versions prior to Openfind Mail2000 V8.0 Patch 34, which stems from the inability to properly filter the parameters of a specific CGI, allowing an attacker to execute arbitrary system...
Openfind Mail2000 操作系统命令注入漏洞
Openfind Mail2000 is a Web-based e-mail system. Openfind Mail2000 suffers from an operating system command injection vulnerability that originates from failure to properly filter specific API parameters, which can be exploited by a remote attacker to execute arbitrary system commands on a remote...
PT-2024-36006
Name of the Vulnerable Software and Affected Versions: Openfind Mail2000 affected versions not specified Description: The issue is related to improper filtering of parameters in specific CGI, allowing remote attackers with regular privileges to execute arbitrary system commands on the remote...
PT-2024-36002
Name of the Vulnerable Software and Affected Versions: Openfind Mail2000 affected versions not specified Description: The issue is related to improper filtering of parameters in a specific API, allowing remote attackers with administrative privileges to execute arbitrary system commands on the...
CVE-2023-28705
Openfind Mail2000 has insufficient filtering special characters of email content of its content filtering function. A remote attacker can exploit this vulnerability using phishing emails that contain malicious web pages injected with JavaScript. When users access the system and open the email, it...