RSS   Vulnerabilities for 'Mail-secure'   RSS

2013-11-20
 
CVE-2013-6829

 

 
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.

 
 
CVE-2013-6828

 

 
admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.

 
 
CVE-2013-6827

 

 
Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.

 
2013-11-07
 
CVE-2013-4987

CWE-264
 

 
PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command.

 

 >>> Vendor: Pineapp 3 Products
Mail-secure
Mail-secure 5099sk
Mail secure


Copyright 2024, cxsecurity.com

 

Back to Top