Security Advisory

CVE-2004-1129

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2004-12-05 05:00:00

Last updated 2024-08-08 00:39:00

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in (1) fdelmail.asp, (2) addressc.asp, and possibly (3) postmail.asp and (4) fmvmail.asp in CMailServer 5.2 allow remote attackers to inject arbitrary SQL commands and delete mail metadata or e-mail addresses of contacts via the indexOfMail parameter.

← Browse all CVEs View on cve.org ↗