Vulnerabilities > Seeds > Acmailer > 3.8.17

DATE CVE VULNERABILITY TITLE RISK
2016-01-16 CVE-2016-1142 OS Command Injection vulnerability in Seeds Acmailer
Seeds acmailer before 3.8.21 and 3.9.x before 3.9.15 Beta allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.
network
low complexity
seeds CWE-78
critical
 9.0
9.0
2015-07-19 CVE-2015-2971 Path Traversal vulnerability in Seeds Acmailer
Directory traversal vulnerability in Seeds acmailer before 3.8.18 and 3.9.x before 3.9.12 Beta allows remote authenticated users to delete arbitrary files via a crafted string.
network
low complexity
seeds CWE-22
5.5
5.5