Vulnerabilities > Courier MTA > Courtier Authlib > 0.60.6

DATE CVE VULNERABILITY TITLE RISK
2008-12-22 CVE-2008-2380 SQL Injection vulnerability in Courier-Mta Courtier-Authlib
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
network
high complexity
courier-mta CWE-89
5.1
5.1