RSS   Vulnerabilities for 'Mailgust'   RSS

2006-02-28
 
CVE-2006-0937

 
 
U.N.U. Mailgust 1.9 allows remote attackers to obtain sensitive information via a direct request to index.php with method=showfullcsv, which reveals the POP3 server configuration, including account name and password.

 
2005-09-27
 
CVE-2005-3063

 
 
SQL injection vulnerability in MailGust 1.9 allows remote attackers to execute arbitrary SQL commands via the email field on the password reminder page.

 

Copyright 2024, cxsecurity.com

 

Back to Top