CVE-2024-34472
HSC Mailinspector versions 5.2.17-3 through 5.2.18 are affected by an authenticated blind SQL injection in mliRealtimeEmails.php. The ordemGrid parameter in POST requests to /mailinspector/mliRealtimeEmails.php is not properly sanitized, allowing an authenticated attacker to execute arbitrary SQL...