Vulnerabilities > GNU > Mailutils > 1.0.6.1.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-06-02 | CVE-2005-1824 | Unspecified vulnerability in GNU Mailutils 1.0.6.1.1 The sql_escape_string function in auth/sql.c for the mailutils SQL authentication module does not properly quote the "\" (backslash) character, which is used as an escape character and makes the module vulnerable to SQL injection attacks. | 7.5 |