Vulnerabilities > Hgiga

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-31	CVE-2020-35743	SQL Injection vulnerability in Hgiga products HGiga MailSherlock contains a SQL injection flaw. network low complexity hgiga CWE-89	6.5
2020-12-31	CVE-2020-35742	SQL Injection vulnerability in Hgiga products HGiga MailSherlock contains a vulnerability of SQL Injection. network low complexity hgiga CWE-89	6.5
2020-12-31	CVE-2020-35741	Cross-site Scripting vulnerability in Hgiga products HGiga MailSherlock does not validate user parameters on multiple login pages. network hgiga CWE-79	4.3
2020-12-31	CVE-2020-35740	Cross-site Scripting vulnerability in Hgiga products HGiga MailSherlock does not validate specific URL parameters properly that allows attackers to inject JavaScript syntax for XSS attacks. network hgiga CWE-79	4.3
2020-12-31	CVE-2020-25850	Unspecified vulnerability in Hgiga Msr45 Isherlock-User and Ssr45 Isherlock-User The function, view the source code, of HGiga MailSherlock does not validate specific characters. network low complexity hgiga	5.0
2020-12-31	CVE-2020-25848	Insufficiently Protected Credentials vulnerability in Hgiga products HGiga MailSherlock contains weak authentication flaw that attackers grant privilege remotely with default password generation mechanism. network low complexity hgiga CWE-522 critical	10.0
2020-04-15	CVE-2020-10512	SQL Injection vulnerability in Hgiga Oaklouds Ccm@Il HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows attackers to injecting SQL commands in the URL parameter to execute unauthorized commands. network low complexity hgiga CWE-89 critical	9.0
2020-04-15	CVE-2020-10511	OS Command Injection vulnerability in Hgiga Oaklouds Ccm@Il HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. network low complexity hgiga CWE-78 critical	10.0
2019-06-03	CVE-2019-9883	Cross-Site Request Forgery (CSRF) vulnerability in Hgiga products Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. network hgiga CWE-352	6.8
2019-06-03	CVE-2019-9882	Cross-Site Request Forgery (CSRF) vulnerability in Hgiga products Multi modules of MailSherlock MSR35 and MSR45 lead to a CSRF vulnerability. network hgiga CWE-352	6.8

Vulnerabilities > Hgiga {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hgiga"}]}

Vulnerabilities > Hgiga