Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Web Based Administration in MicroWorld Technologies MailScan 5.6.a espatch 1 allows remote attackers to bypass authentication and obtain administrative access via a direct request with (1) an IsAdmin=true cookie value or (2) no cookie.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MicroWorld MailScan Web控制台 绕过安全认证漏洞
Vulnerability Description
MailScan是一款邮件服务器实时杀毒和反垃圾邮件软件。 MailScan 5.6.a espatch1 版本的Web管理控制台存在绕过安全认证机制漏洞。远程攻击者可通过不使用cookie的方式直接绕过认证机制,或者伪造cookie信息设置IsAdmin=true,直接获得管理权限。
CVSS Information
N/A
Vulnerability Type
N/A