EUVD-2023-28825

Malicious code in bioql PyPI...

Softnext Technologies Mail SQR Expert Code Issue Vulnerability

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies, China. A code issue vulnerability exists in Softnext Technologies Mail SQR Expert prior to v230330, which arises from insufficient filtering of specific URL parameters in...

Softnext Technologies Mail SQR Expert Operating System Command Injection Vulnerability

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. Softnext Technologies Mail SQR Expert v230330 prior version suffers from an operating system command injection vulnerability, which stems from insufficient special charact...

Softnext Technologies Mail SQR Expert Path Traversal Vulnerability

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. A path traversal vulnerability exists in Softnext Technologies Mail SQR Expert prior to v230330, which is a path traversal vulnerability in the parameters of a specific UR...

CVE-2023-24835

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service...

Code injection

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service...

CVE-2023-24835 Softnext SPAM SQR - Code Injection

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service...

SPAM SQR 代码注入漏洞

Softnext Technologies SPAM SQR is a comprehensive email filtering platform from China-based Softnext Technologies. A code injection vulnerability exists in SPAM SQR versions prior to 2.221231, which stems from a code injection flaw. An attacker can exploit this vulnerability to execute system...

CVE-2023-24835 Softnext SPAM SQR - Code Injection

Softnext Technologies Corp.’s SPAM SQR has a vulnerability of Code Injection within its specific function. An authenticated remote attacker with administrator privilege can exploit this vulnerability to execute arbitrary system command to perform arbitrary system operation or disrupt service...

PT-2023-19815 · Softnext Technologies · Spam Sqr

Name of the Vulnerable Software and Affected Versions: Softnext Technologies Corp.’s SPAM SQR affected versions not specified Description: The issue concerns a Code Injection vulnerability within a specific function of the software. An authenticated remote attacker with administrator privilege ca...

CVE-2022-40742 SOFTNEXT TECHNOLOGIES CORP. Mail SQR Expert - Local File Inclusion

Mail SQR Expert system has a Local File Inclusion vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary PHP file with .asp file extension under specific system paths, to access and modify partial system information but does not affect service...

CVE-2022-40742 SOFTNEXT TECHNOLOGIES CORP. Mail SQR Expert - Local File Inclusion

Mail SQR Expert system has a Local File Inclusion vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary PHP file with .asp file extension under specific system paths, to access and modify partial system information but does not affect service...

CVE-2022-40741 SOFTNEXT TECHNOLOGIES CORP. Mail SQR Expert - Command Injection

Mail SQR Expert’s specific function has insufficient filtering for special characters. An unauthenticated remote attacker can exploit this vulnerability to perform arbitrary system command and disrupt service...

Softnext Technologies Mail SQR Expert 操作系统命令注入漏洞

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. A security vulnerability exists in Softnext Technologies Mail SQR Expert due to insufficient filtering of special characters in certain functions, which can be exploited b...

Softnext Technologies Mail SQR Expert 路径遍历漏洞

Softnext Technologies Mail SQR Expert is a comprehensive email content security management system from Softnext Technologies. A security vulnerability exists in Softnext Technologies Mail SQR Expert, which can be exploited by an attacker to execute a PHP file with an arbitrary .asp file extension...