Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in Postfix Admin (aka postfixadmin) before 2.3.5 allow remote authenticated users to execute arbitrary SQL commands via (1) the pw parameter to the pacrypt function, when mysql_encrypt is configured, or (2) unspecified vectors that are used in backup files generated by backup.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Postfix Admin 输入验证漏洞
Vulnerability Description
Postfix Admin(也称postfixadmin)是一套基于Web的Postfix(邮件发送服务器)管理工具。该工具可直接管理Postfix的虚拟域名和用户。 Postfix Admin 2.3.4及之前的版本中存在SQL注入漏洞。远程攻击者可利用该漏洞执行任意SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A