Postfix Admin Project : Security Vulnerabilities, CVEs, CVSS score >= 2
SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands via a new alias.
Max CVSS
6.5
EPSS Score
0.26%
Published
2014-04-02
Updated
2014-06-05
PostfixAdmin 2.3.4 has multiple XSS vulnerabilities
Max CVSS
6.1
EPSS Score
1.23%
Published
2019-11-22
Updated
2020-08-18
2 vulnerabilities found