Vulnerability Details CVE-2018-20323
www/soap/application/MCSoap/Logs.php in MailCleaner Community Edition 2018.08 allows remote attackers to execute arbitrary OS commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.753
EPSS Ranking 98.8%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 9.0
References
- http://packetstormsecurity.com/files/151056/Mailcleaner-Remote-Code-Execution.html
- https://pentest.blog/advisory-mailcleaner-community-edition-remote-code-execution/
- http://packetstormsecurity.com/files/151056/Mailcleaner-Remote-Code-Execution.html
- https://pentest.blog/advisory-mailcleaner-community-edition-remote-code-execution/
Products affected by CVE-2018-20323
-
cpe:2.3:a:mailcleaner:mailcleaner:2018.08