Lucene search
+L

22 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-4146

Malware in sbrugna...

8.8CVSS8.6AI score0.07107EPSS
Exploits3References7
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2020-4145

Malware in sbrugna...

8.8CVSS8.6AI score0.0755EPSS
Exploits3References7
redhatcve
redhatcve
added 2025/05/22 5:6 p.m.8 views

CVE-2020-11804

An issue was discovered in Titan SpamTitan 7.07. Due to improper sanitization of the parameter quid, used in the page mailqueue.php, code injection can occur. The input for this parameter is provided directly by an authenticated user via an HTTP GET request...

8.8CVSS7.2AI score0.07107EPSS
Exploits3References1
redhatcve
redhatcve
added 2025/05/22 4:11 p.m.9 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8CVSS7AI score0.0755EPSS
Exploits3References1
redhatcve
redhatcve
added 2025/05/22 3:8 p.m.7 views

CVE-2020-11699

An issue was discovered in Titan SpamTitan 7.07. Improper validation of the parameter fname on the page certs-x.php would allow an attacker to execute remote code on the target server. The user has to be authenticated before interacting with this page...

9CVSS7.5AI score0.09644EPSS
Exploits3References1
osv
osv
added 2020/09/17 5:15 p.m.5 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8CVSS7.3AI score0.0755EPSS
Exploits3References5
nvd
nvd
added 2020/09/17 5:15 p.m.19 views

CVE-2020-11700

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter fname, used on the page certs-x.php, would allow an attacker to retrieve the contents of arbitrary files. The user has to be authenticated before interacting with this page...

6.5CVSS0.07087EPSS
Exploits3References5
nvd
nvd
added 2020/09/17 5:15 p.m.12 views

CVE-2020-11699

An issue was discovered in Titan SpamTitan 7.07. Improper validation of the parameter fname on the page certs-x.php would allow an attacker to execute remote code on the target server. The user has to be authenticated before interacting with this page...

9CVSS0.09644EPSS
Exploits3References5
nvd
nvd
added 2020/09/17 5:15 p.m.29 views

CVE-2020-11698

An issue was discovered in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote attacker to inject commands into the file snmpd.conf that would allow executing commands on the target server...

10CVSS0.73668EPSS
Exploits5References6
prion
prion
added 2020/09/17 5:15 p.m.14 views

Input validation

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

6.5CVSS8.6AI score0.0755EPSS
Exploits3References5Affected Software1
prion
prion
added 2020/09/17 5:15 p.m.16 views

Code injection

An issue was discovered in Titan SpamTitan 7.07. Due to improper sanitization of the parameter quid, used in the page mailqueue.php, code injection can occur. The input for this parameter is provided directly by an authenticated user via an HTTP GET request...

6.5CVSS8.7AI score0.07107EPSS
Exploits3References5Affected Software1
prion
prion
added 2020/09/17 5:15 p.m.11 views

Input validation

An issue was discovered in Titan SpamTitan 7.07. Improper validation of the parameter fname on the page certs-x.php would allow an attacker to execute remote code on the target server. The user has to be authenticated before interacting with this page...

9CVSS8.8AI score0.09644EPSS
Exploits3References5Affected Software1
prion
prion
added 2020/09/17 5:15 p.m.12 views

Design/Logic Flaw

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter fname, used on the page certs-x.php, would allow an attacker to retrieve the contents of arbitrary files. The user has to be authenticated before interacting with this page...

4CVSS6.9AI score0.07087EPSS
Exploits3References5Affected Software1
prion
prion
added 2020/09/17 5:15 p.m.15 views

Design/Logic Flaw

An issue was discovered in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote attacker to inject commands into the file snmpd.conf that would allow executing commands on the target server...

10CVSS9.4AI score0.73668EPSS
Exploits5References6Affected Software1
cvelist
cvelist
added 2020/09/17 4:34 p.m.28 views

CVE-2020-11700

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter fname, used on the page certs-x.php, would allow an attacker to retrieve the contents of arbitrary files. The user has to be authenticated before interacting with this page...

7AI score0.07087EPSS
Exploits3References5
cvelist
cvelist
added 2020/09/17 4:31 p.m.24 views

CVE-2020-11699

An issue was discovered in Titan SpamTitan 7.07. Improper validation of the parameter fname on the page certs-x.php would allow an attacker to execute remote code on the target server. The user has to be authenticated before interacting with this page...

8.9AI score0.09644EPSS
Exploits3References5
cvelist
cvelist
added 2020/09/17 4:28 p.m.40 views

CVE-2020-11698

An issue was discovered in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote attacker to inject commands into the file snmpd.conf that would allow executing commands on the target server...

9.5AI score0.73668EPSS
Exploits5References6
cve
cve
added 2020/09/17 4:28 p.m.87 views

CVE-2020-11698

SpamTitan CVE-2020-11698 affects SpamTitan Gateway 7.07 (and possibly earlier) via an improper input sanitization flaw in snmp-x.php. The vulnerability allows a remote attacker to inject commands into snmpd.conf, enabling remote code execution on the target server (reported as unauthenticated RPC...

10CVSS9.3AI score0.73668EPSS
Exploits5References6Affected Software1
cvelist
cvelist
added 2020/09/17 4:26 p.m.19 views

CVE-2020-11804

An issue was discovered in Titan SpamTitan 7.07. Due to improper sanitization of the parameter quid, used in the page mailqueue.php, code injection can occur. The input for this parameter is provided directly by an authenticated user via an HTTP GET request...

8.9AI score0.07107EPSS
Exploits3References5
cvelist
cvelist
added 2020/09/17 4:24 p.m.23 views

CVE-2020-11803

An issue was discovered in Titan SpamTitan 7.07. Improper sanitization of the parameter jaction when interacting with the page mailqueue.php could lead to PHP code evaluation server-side, because the user-provided input is passed directly to the php eval function. The user has to be authenticated...

8.8AI score0.0755EPSS
Exploits3References5
Rows per page
Query Builder