Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cybonet - PineApp Mail Relay Unauthenticated Sql Injection
Vulnerability Description
Cybonet - PineApp Mail Relay Unauthenticated Sql Injection. Attacker can send a request to: /manage/emailrichment/userlist.php?CUSTOMER_ID_INNER=1 /admin/emailrichment/userlist.php?CUSTOMER_ID_INNER=1 /manage/emailrichment/usersunlist.php?CUSTOMER_ID_INNER=1 /admin/emailrichment/usersunlist.php?CUSTOMER_ID_INNER=1 and by doing that, the attacker can run Remote Code Execution in one liner.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Cybonet PineApp Mail Secure SQL注入漏洞
Vulnerability Description
Cybonet PineApp Mail Secure是以色列Cybonet公司的在网络外围阻止大多数恶意电子邮件威胁,同时提供一系列附加选项以实现全面的安全和消息控制。 Cybonet - PineApp Mail Relay 存在SQL注入漏洞,攻击者可以进行远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A