Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in TitanHQ SpamTitan Email Security Gateway 8.00.x before 8.00.101 and 8.01.x before 8.01.14. The file quarantine.php within the SpamTitan interface allows unauthenticated users to trigger account-level actions using a crafted GET request. Notably, when a non-existent email address is provided as part of the email parameter, SpamTitan will automatically create a user record and associate quarantine settings with it - all without requiring authentication.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TitanHQ SpamTitan Email Security Gateway 安全漏洞
Vulnerability Description
TitanHQ SpamTitan Email Security Gateway是爱尔兰TitanHQ公司的一款邮件安全网关。 TitanHQ SpamTitan Email Security Gateway 8.00.101之前8.00.x版本和8.01.14之前8.01.x版本存在安全漏洞,该漏洞源于quarantine.php允许未验证用户触发账户操作。
CVSS Information
N/A
Vulnerability Type
N/A