Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Improper input validation in Newsletter Software SuperMailer
Vulnerability Description
Improper input validation vulnerability in Newsletter Software SuperMailer affecting version 11.20.0.2204. An attacker could exploit this vulnerability by sending a malicious configuration file (file with SMB extension) to a user via a link or email attachment and persuade the user to open the file with the affected software on the local system. A successful exploit could allow the attacker to crash the application when attempting to load the malicious file.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Vulnerability Type
输入验证不恰当
Vulnerability Title
Newsletter 输入验证错误漏洞
Vulnerability Description
Newsletter是一键式批量邮件解决方案。 Newsletter Software SuperMailer 11.20.0.2204版本存在输入验证错误漏洞,该漏洞源于允许攻击者通过链接或电子邮件附件向用户发送恶意配置文件使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A