Postfix Admin Project » Postfix Admin : Security Vulnerabilities, CVEs, Published In 2014
SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands via a new alias.
Max CVSS
6.5
EPSS Score
0.25%
Published
2014-04-02
Updated
2014-06-05
1 vulnerabilities found