Filtered by vendor Omail
Subscribe
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2004-1993 | 1 Omail | 1 Omail Webmail | 2024-02-04 | 10.0 HIGH | N/A |
| The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute arbitrary commands via shell metacharacters such as "`" (backticks) in the password. | |||||
| CVE-2003-1202 | 1 Omail | 1 Omail Webmail | 2024-02-04 | 10.0 HIGH | N/A |
| The checklogin function in omail.pl for omail webmail 0.98.4 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) password, (2) domainname, or (3) username. | |||||