Vulnerabilities > Alex Kellner > Powermail > 2.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-10-03 | CVE-2014-6288 | Permissions, Privileges, and Access Controls vulnerability in Alex Kellner Powermail The powermail extension 2.x before 2.0.11 for TYPO3 allows remote attackers to bypass the CAPTCHA protection mechanism via unspecified vectors. | 7.5 |
| 2014-10-03 | CVE-2014-3947 | Code Injection vulnerability in Alex Kellner Powermail Unrestricted file upload vulnerability in the powermail extension before 1.6.11 and 2.x before 2.0.14 for TYPO3 allows remote attackers to execute arbitrary code by uploading a file with a crafted extension, then accessing it via unspecified vectors. | 7.5 |