VULHUB ™

Vpopmail is reportedly susceptible to SQL injection vulnerabilities. This issue is due to a failure of the application to properly sanitize user-supplied input data before using it in an SQL query. Vpopmail is only vulnerable if SQL servers are utilized by the application. Sites using the 'cdb' backend for data storage are not affected. Successful exploitation could result in compromise of the application, disclosure or modification of data or may permit an attacker to exploit vulnerabilities in the underlying database implementation. Vpopmail is reported vulnerable in versions prior to 5.4.6.

Vpopmail is reportedly susceptible to SQL injection vulnerabilities. This issue is due to a failure of the application to properly sanitize user-supplied input data before using it in an SQL query. Vpopmail is only vulnerable if SQL servers are utilized by the application. Sites using the 'cdb' backend for data storage are not affected. Successful exploitation could result in compromise of the application, disclosure or modification of data or may permit an attacker to exploit vulnerabilities in the underlying database implementation. Vpopmail is reported vulnerable in versions prior to 5.4.6.