EUVD-2020-17333

Malware in sbrugna...

CVE-2020-24617

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

Improper Privilege Management in mailtrain-org/mailtrain

BUG Lower level user can revoke access from a campaign for admin . IMPACT Admin will not be able to access perticular campaign .\ This happen when lower level user added admin to a campaign and them removed him . STEP TO REPRODUCE 1. From admin account goto http://localhost:3000/users and add a...

Cross-site Scripting (XSS) - Generic in mailtrain-org/mailtrain

✍️ Description Stored xss via campaign file upload 🕵️‍♂️ Proof of Concept 1. First goto http://localhost:3000/campaigns and open a campaign . 2.Now in linux create a file with bellow name. 3. Now upload the created file in the above capaign http://localhost:3000/campaigns/1/files and see xss is...

Path Traversal in mailtrain-org/mailtrain

✍️ Description A path traversal also known as directory traversal is a web security vulnerability that allows an attacker to read arbitrary files on the server that is running an application. This might include application code and data, credentials for back-end systems, and sensitive operating...

Mailtrain SQL Injection Vulnerability

Mailtrain is an open source hosted newsletter application built on Node.js and MySQL/MariaDB. A SQL injection vulnerability exists in Mailtrain 1.24.1 and earlier in lib/models/campaigns.js in statsClickedSubscribersByColumn. The vulnerability stems from not properly escaping variable column name...

CVE-2020-24617

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

CVE-2020-24617

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

CVE-2020-24617

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

Sql injection

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

CVE-2020-24617

Mailtrain through 1.24.1 allows SQL Injection in statsClickedSubscribersByColumn in lib/models/campaigns.js via /campaigns/clicked/ajax because variable column names are not properly escaped...

CVE-2020-24617

Mailtrain 1.24.1 and earlier is affected by CVE-2020-24617 due to a SQL injection in statsClickedSubscribersByColumn (lib/models/campaigns.js) that is exploitable via /campaigns/clicked/ajax because variable column names are not properly escaped. This enables injection through a vulnerable query,...

Mailtrain SQL注入漏洞

Mailtrain is an open source hosted newsletter application built on Node.js and MySQL/MariaDB. A SQL injection vulnerability exists in Mailtrain 1.24.1 and earlier in lib/models/campaigns.js in statsClickedSubscribersByColumn. The vulnerability stems from not properly escaping variable column name...