Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2004-1993 | 1 Omail | 1 Omail Webmail | 2025-04-03 | 10.0 HIGH | N/A |
|
The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute arbitrary commands via shell metacharacters such as "`" (backticks) in the password.
|
|||||
| CVE-2003-1202 | 1 Omail | 1 Omail Webmail | 2025-04-03 | 10.0 HIGH | N/A |
|
The checklogin function in omail.pl for omail webmail 0.98.4 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) password, (2) domainname, or (3) username.
|
|||||