2 matches found
CVE-2015-2955
Igreks MilkyStep Light 0.94 and earlier and Professional 1.82 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors...
CVE-2015-2955
CVE-2015-2955 affects Igreks MilkyStep, specifically MilkyStep Light 0.94 and earlier and MilkyStep Professional 1.82 and earlier. The root cause is an OS command injection vulnerability (CWE-78) in a CGI component used for email newsletter distribution. This allows a remote attacker to execute a...