2 matches found
Debian DSA-347-1 : teapop - SQL injection
teapop, a POP-3 server, includes modules for authenticating users against a PostgreSQL or MySQL database. These modules do not properly escape user-supplied strings before using them in SQL queries. This vulnerability could be exploited to execute arbitrary SQL code under the privileges of the...
GLSA: teapop (200309-18)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - --------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200309-18 - - - --------------------------------------------------------------------- PACKAGE : teapop SUMMARY : sql...