Pineapp » Mail-secure : Security Vulnerabilities, CVEs,
CVE-2013-6829
Public exploit
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.
Max CVSS
7.5
EPSS Score
1.95%
Published
2013-11-20
Updated
2013-11-21
admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.
Max CVSS
6.4
EPSS Score
0.16%
Published
2013-11-20
Updated
2013-11-21
Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.
Max CVSS
5.0
EPSS Score
0.21%
Published
2013-11-20
Updated
2013-11-21
PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command.
Max CVSS
8.5
EPSS Score
0.30%
Published
2013-11-08
Updated
2013-11-08
4 vulnerabilities found