2 matches found
MailEnable vulnerability warning CVE-2019-12923~CVE-2019-12927-the vulnerability warning-the black bar safety net
Recently, the mail server MailEnable broke a set of vulnerabilities, the first time for tracking and analysis of early warning. The study found that, using the set of vulnerabilities that an attacker can achieve the user data CRUD, the file is read and a portion of the override operation...
CVE-2019-12923
CVE-2019-12923 affects MailEnable Enterprise Premium (versions around 10.23/10.24). The CSRF protection was not implemented correctly, allowing bypass by removing the anti-CSRF token parameter. This could let an attacker manipulate a user into performing actions in the application (e.g., sending ...