Hgiga Oaklouds Mailsherlock — known CVE vulnerabilities
Every CVE whose affected-product data names Hgiga Oaklouds Mailsherlock, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-24840 — CVSS 7.2 (high): HGiga MailSherlock mail query function has vulnerability of insufficient validation for user input. An authenticated remote attacker with…
CVE-2023-24841 — CVSS 7.2 (high): HGiga MailSherlock query function for connection log has a vulnerability of insufficient filtering for user input. An authenticated remote…
CVE-2023-24839 — CVSS 6.1 (medium): HGiga MailSherlock’s specific function has insufficient filtering for user input. An unauthenticated remote attacker can exploit this…
CVE-2023-24842 — CVSS 5.3 (medium): HGiga MailSherlock has vulnerability of insufficient access control. An unauthenticated remote user can exploit this vulnerability to…
CVE-2018-17542 — CVSS 4.3 (medium): SQL Injection exists in MailSherlock before 1.5.235 for OAKlouds allows an unauthenticated user to extract the subjects of the emails of…