HGiga MailSherlock contains weak authentication flaw that attackers grant privilege remotely with default password generation mechanism.
9.8CVSS
9.6AI Score
0.003EPSS
HGiga MailSherlock contains a SQL Injection. Remote attackers can inject SQL syntax and execute SQL commands in a URL parameter of email pages without privilege.
9.8CVSS
9.8AI Score
0.001EPSS