11 matches found
CVE-2024-5670
The web services of Softnext's products, Mail SQR Expert and Mail Archiving Expert do not properly validate user input, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the remote server...
CVE-2024-5670 Softnext Mail SQR Expert and Mail Archiving Expert - OS Command Injection
The web services of Softnext's products, Mail SQR Expert and Mail Archiving Expert do not properly validate user input, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the remote server...
CVE-2024-5670 Softnext Mail SQR Expert and Mail Archiving Expert - OS Command Injection
The web services of Softnext's products, Mail SQR Expert and Mail Archiving Expert do not properly validate user input, allowing unauthenticated remote attackers to inject arbitrary OS commands and execute them on the remote server...
CVE-2024-5670
Summary (CVE-2024-5670) : The web services of Softnext’s Mail SQR Expert and Mail Archiving Expert fail to validate user input, enabling unauthenticated remote attackers to inject and execute arbitrary OS commands on the remote server. This is described across multiple sources as an OS command in...
PT-2024-37010 · Softnext · Softnext Mail Archiving Expert +1
Name of the Vulnerable Software and Affected Versions: Softnext Mail SQR Expert affected versions not specified Softnext Mail Archiving Expert affected versions not specified Description: The web services of Softnext's products do not properly validate user input, allowing unauthenticated remote...
Apache Pony Mail Security Bypass Vulnerability
Apache Pony Mail is a plugin with mail archiving, viewing and interaction features. A security vulnerability exists in Apache Pony Mail that allows an attacker to submit special requests to bypass authentication...
doremovespacemail action can be called by non-admins
The doremovespacemail action is provided by the confluence-mail-archiving plugin, and allows all of the archived mail associated with a space to be removed. This action can be called by any authenticated user, which appears to be an oversight in access control, given that similar methods such as...
doremovespacemail action can be called by non-admins
The doremovespacemail action is provided by the confluence-mail-archiving plugin, and allows all of the archived mail associated with a space to be removed. This action can be called by any authenticated user, which appears to be an oversight in access control, given that similar methods such as...
doremovespacemail action can be called by non-admins
The doremovespacemail action is provided by the confluence-mail-archiving plugin, and allows all of the archived mail associated with a space to be removed. This action can be called by any authenticated user, which appears to be an oversight in access control, given that similar methods such as...
Fedora Update for mhonarc FEDORA-2011-3357
Check for the Version of mhonarc OpenVAS Vulnerability Test Fedora Update for mhonarc FEDORA-2011-3357 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
[SECURITY] Fedora 14 Update: mhonarc-2.6.18-3.fc14
MHonArc is a Perl mail-to-HTML converter. MHonArc provides HTML mail archiving with index, mail thread linking, etc; plus other capabilities including support for MIME and powerful user customization features...