Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-20617
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper access control vulnerability in acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1.1.3 and earlier allows remote attackers to execute an arbitrary OS command, or gain an administrative privilege which may result in obtaining the sensitive information on the server via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Seeds Acmailer Db 和 Seeds Acmailer 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Seeds Acmailer和Seeds Acmailer Db都是日本Seeds公司的产品。Seeds Acmailer是一款用于支持邮件服务的CGI软件。Seeds Acmailer Db是一款用于支持邮件服务的CGI软件。该软件相较于标准版本会增加Mysql数据库连接功能,会提供更高的并发数量以及定制功能。 Seeds Acmailer 4.0.1版本及之前版本和Seeds Acmailer DB 1.1.3版本及之前版本存在安全漏洞,该漏洞允许远程攻击者执行任意操作系统命令,或获得管理权限。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
Seeds Co.,Ltd.acmailer and acmailer DB acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1.1.3 and earlier -
II. Public POCs for CVE-2021-20617
#POC DescriptionSource LinkShenlong Link
1Improper access control vulnerability in acmailer ver. 4.0.1 and earlier, and acmailer DB ver. 1.1.3 and earlier allows remote attackers to execute an arbitrary OS command, or gain an administrative privilege which may result in obtaining the sensitive information on the server via unspecified vectors. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-20617.yamlPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2021-20617
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: acmailer and acmailer DB
Same vendor: Seeds Co.,Ltd.
V. Comments for CVE-2021-20617

No comments yet

Leave a comment