Описание
Insufficient verification vulnerability exists in Broadcast Mail CGI (pmc.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution privilege.
EPSS
Процентиль: 35%
0.00145
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 4.3
github
почти 2 года назад
Insufficient verification vulnerability exists in Broadcast Mail CGI (pmc.exe) included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution privilege.
EPSS
Процентиль: 35%
0.00145
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-434