CVE-2022-46333

The admin user interface in Proofpoint Enterprise Protection PPS/PoD contains a command injection vulnerability that enables an admin to execute commands beyond their allowed scope. This affects all versions 8.19.0 and below...

Command injection

The admin user interface in Proofpoint Enterprise Protection PPS/PoD contains a command injection vulnerability that enables an admin to execute commands beyond their allowed scope. This affects all versions 8.19.0 and below...

Cross site scripting

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

CVE-2022-46333 Proofpoint Enterprise Protection perl eval() arbitrary command execution

The admin user interface in Proofpoint Enterprise Protection PPS/PoD contains a command injection vulnerability that enables an admin to execute commands beyond their allowed scope. This affects all versions 8.19.0 and below...

CVE-2022-46333

CVE-2022-46333 affects Proofpoint Enterprise Protection (PPS/PoD) where the admin UI contains a command injection vulnerability allowing an admin to execute commands beyond their scope. Affected versions are 8.19.0 and earlier. The underlying issue is a command execution path in the admin interfa...

CVE-2022-46333 Proofpoint Enterprise Protection perl eval() arbitrary command execution

The admin user interface in Proofpoint Enterprise Protection PPS/PoD contains a command injection vulnerability that enables an admin to execute commands beyond their allowed scope. This affects all versions 8.19.0 and below...

CVE-2022-46332 Proofpoint Enterprise Protection (PPS/PoD) XSS in "Attachment Names"

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

CVE-2022-46332 Proofpoint Enterprise Protection (PPS/PoD) XSS in "Attachment Names"

The Admin Smart Search feature in Proofpoint Enterprise Protection PPS/PoD contains a stored cross-site scripting vulnerability that enables an anonymous email sender to gain admin privileges within the user interface. This affects all versions 8.19.0 and below...

CVE-2022-46332

CVE-2022-46332 affects Proofpoint Enterprise Protection (PPS/PoD) with a stored cross-site scripting (XSS) vulnerability in the Admin Smart Search feature. Exploitation requires user interaction and anonymous access, enabling an attacker to gain admin privileges within the UI. Affected versions: ...

Proofpoint Enterprise Protection 跨站脚本漏洞

Proofpoint Enterprise Protection is an application from Proofpoint USA. It provides functionality to protect e-mail. A security vulnerability exists in Proofpoint Enterprise Protection PPS/PoD version 8.19.0 and prior versions, which stems from the Administrator Smart Search feature containing a...

Proofpoint Enterprise Protection 代码注入漏洞

Proofpoint Enterprise Protection is an application from Proofpoint USA. It provides functionality to protect e-mail. A code injection vulnerability exists in Proofpoint Enterprise Protection PPS/PoD version 8.19.0 and prior versions, which stems from the administrator user interface containing a...

PT-2022-27825 · Proofpoint · Proofpoint Enterprise Protection

Name of the Vulnerable Software and Affected Versions: Proofpoint Enterprise Protection PPS/PoD versions 8.19.0 and below Description: The admin user interface in Proofpoint Enterprise Protection contains a command injection issue that allows an admin to execute commands beyond their allowed scop...

PT-2022-27824 · Proofpoint · Proofpoint Enterprise Protection

Name of the Vulnerable Software and Affected Versions: Proofpoint Enterprise Protection PPS/PoD versions 8.19.0 and below Description: The Admin Smart Search feature in Proofpoint Enterprise Protection contains a stored cross-site scripting issue that allows an anonymous email sender to gain admi...

Nighthawk Likely to Become Hackers' New Post-Exploitation Tool After Cobalt Strike

A nascent and legitimate penetration testing framework known as Nighthawk is likely to gain threat actors' attention for its Cobalt Strike-like capabilities. Enterprise security firm Proofpoint said it detected the use of the software in mid-September 2022 by a red team with a number of test emai...

CVE-2021-31608

Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...

CVE-2021-31608

Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...

Security feature bypass

Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...

CVE-2021-31608

Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...

Proofpoint Enterprise Protection 安全漏洞

Proofpoint Enterprise Protection is an application from Proofpoint USA. It provides functionality to protect e-mail. A security vulnerability exists in Proofpoint Enterprise Protection that stems from a security mechanism that can be bypassed...

CVE-2021-31608

Proofpoint Enterprise Protection before 18.8.0 allows a Bypass of a Security Control...