Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SOFTNEXT TECHNOLOGIES CORP. Mail SQR Expert - Command Injection
Vulnerability Description
Mail SQR Expert’s specific function has insufficient filtering for special characters. An unauthenticated remote attacker can exploit this vulnerability to perform arbitrary system command and disrupt service.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Softnext Technologies Mail SQR Expert 操作系统命令注入漏洞
Vulnerability Description
Softnext Technologies Mail SQR Expert是中国中华数位科技(Softnext Technologies)公司的一个全方位电子邮件内容安全管理系统。 Softnext Technologies Mail SQR Expert 存在安全漏洞,该漏洞源于特定功能对特殊字符的过滤不足,攻击者利用该漏洞可以执行任意系统命令并中断服务。
CVSS Information
N/A
Vulnerability Type
N/A