Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/08/23 12:23 a.m.9 views

CVE-2024-45438

An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent emai...

9.1CVSS7.2AI score0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/21 12:0 a.m.3 views

CVE-2024-45438

An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent emai...

7.1AI score0.00529EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.3 views

CVE-2020-11698

An issue was discovered in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote attacker to inject commands into the file snmpd.conf that would allow executing commands on the target server...

10CVSS9AI score0.73668EPSS
Exploits5References1
OSV
OSV
added 2020/12/23 3:15 a.m.5 views

CVE-2020-35658

SpamTitan before 7.09 allows attackers to tamper with backups, because backups are not encrypted...

5.3CVSS6.1AI score0.00505EPSS
Exploits1References2
CNNVD
CNNVD
added 2020/12/22 12:0 a.m.7 views

Copperfasten Technologies TitanHQ SpamTitan Encryption Issue Vulnerability

Copperfasten Technologies TitanHQ SpamTitan is a spam filter from Copperfasten Technologies, Ireland. The product blocks email threats such as spam, viruses, malware, ransomware and phishing. A security vulnerability exists in SpamTitan versions prior to 7.09, which stems from a vulnerability tha...

5.3CVSS6.1AI score0.00505EPSS
Exploits1References3
CNVD
CNVD
added 2020/09/18 12:0 a.m.6 views

SpamTitan Code Injection Vulnerability (CNVD-2020-52877)

SpamTitan is an anti-spam solution from C/o Copperfasten, Ireland. The solution is characterized by easy installation and simple configuration. A code injection vulnerability exists in SpamTitan 7.07. The vulnerability stems from improper validation of the jaction parameter in mailqueue.php. An...

8.8CVSS7.8AI score0.0755EPSS
Exploits3References1
OSV
OSV
added 2020/09/17 5:15 p.m.2 views

CVE-2020-24046

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. This restricted shell can be bypassed after changing the properties of the user admin in the operating...

7.2CVSS7.1AI score0.03408EPSS
Exploits1References4
OSV
OSV
added 2020/09/17 5:15 p.m.2 views

CVE-2020-11804

An issue was discovered in Titan SpamTitan 7.07. Due to improper sanitization of the parameter quid, used in the page mailqueue.php, code injection can occur. The input for this parameter is provided directly by an authenticated user via an HTTP GET request...

8.8CVSS7.4AI score
Exploits0References5
OSV
OSV
added 2020/09/17 5:15 p.m.5 views

CVE-2020-24045

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. The restricted shell can be bypassed by presenting a fake vmware-tools ISO image to the guest virtual...

7.2CVSS5.9AI score0.01553EPSS
Exploits1References4
OSV
OSV
added 2020/09/17 5:15 p.m.4 views

CVE-2020-11700

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter fname, used on the page certs-x.php, would allow an attacker to retrieve the contents of arbitrary files. The user has to be authenticated before interacting with this page...

6.5CVSS5.9AI score0.07087EPSS
Exploits3References5
OSV
OSV
added 2020/09/17 5:15 p.m.4 views

CVE-2020-11698

An issue was discovered in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote attacker to inject commands into the file snmpd.conf that would allow executing commands on the target server...

9.8CVSS5.9AI score0.73668EPSS
Exploits5References6
Rows per page
Query Builder