Vulnerabilities

CVE-2006-4953

by Fred · 23/09/2006

Multiple SQL injection vulnerabilities in Neon WebMail for Java before 5.08 allow remote attackers to execute arbitrary SQL commands via the (1) adr_sortkey and (2) adr_sortkey_desc parameters in the (a) addrlist servlet, and the (3) sortkey and (4) sortkey_desc parameters in the (b) maillist servlet.

Date published : 2006-09-23

http://www.securityfocus.com/bid/20109

http://vuln.sg/neonmail506-en.html

Similar

Tags: Cybersecurity Alert