Cyrus : Security Vulnerabilities, CVEs, Published In 2002 (Sql injection)
SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail users via the password.
Max CVSS
7.5
EPSS Score
0.20%
Published
2002-12-31
Updated
2008-09-05
1 vulnerabilities found