Advisory | MailCleaner Community Edition Remote Code Execution CVE-2018-20323

In this article, I would like to share a remote code execution vulnerability details of MailCleaner Community Edition product. Advisory Informations Remotely Exploitable: YesAuthentication Required: NOVendor URL: https://www.mailcleaner.net/Date of found: 19 Dec 2018 Technical Details I identified command injection vulnerability of MailCleaner Community Edition product. An authenticated user can execute an operating system command under the context of the … Continue reading Advisory | MailCleaner Community Edition Remote Code Execution CVE-2018-20323