Postfix Admin Project » Postfix Admin : Security Vulnerabilities, CVEs,
PostfixAdmin 2.3.4 has multiple XSS vulnerabilities
Max CVSS
6.1
EPSS Score
1.23%
Published
2019-11-22
Updated
2020-08-18
SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands via a new alias.
Max CVSS
6.5
EPSS Score
0.25%
Published
2014-04-02
Updated
2014-06-05
2 vulnerabilities found