Vulnerabilities > Softnext > Mail SQR Expert > 230330

DATE CVE VULNERABILITY TITLE RISK
2023-12-15 CVE-2023-48380 OS Command Injection vulnerability in Softnext Mail SQR Expert 230330
Softnext Mail SQR Expert is an email management platform, it has insufficient filtering for a special character within a spcific function.
low complexity
softnext CWE-78
8.0
8.0
2023-12-15 CVE-2023-48382 Path Traversal vulnerability in Softnext Mail SQR Expert 230330
Softnext Mail SQR Expert is an email management platform, it has a Local File Inclusion (LFI) vulnerability in a mail deliver-related URL.
network
low complexity
softnext CWE-22
6.5
6.5
2023-12-15 CVE-2023-48378 Path Traversal vulnerability in Softnext Mail SQR Expert 230330
Softnext Mail SQR Expert has a path traversal vulnerability within its parameter in a specific URL.
network
low complexity
softnext CWE-22
7.5
7.5
2023-12-15 CVE-2023-48379 Server-Side Request Forgery (SSRF) vulnerability in Softnext Mail SQR Expert 230330
Softnext Mail SQR Expert is an email management platform, it has inadequate filtering for a specific URL parameter within a specific function.
network
low complexity
softnext CWE-918
5.3
5.3