Vulnerability Details CVE-2021-22848
HGiga MailSherlock contains a SQL Injection. Remote attackers can inject SQL syntax and execute SQL commands in a URL parameter of email pages without privilege.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.3%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 7.5
References
Products affected by CVE-2021-22848
-
cpe:2.3:a:hgiga:msr45_isherlock-antispam:4.5-130
-
cpe:2.3:a:hgiga:msr45_isherlock-user:4.5-114
-
cpe:2.3:a:hgiga:msr45_isherlock-user:4.5-115
-
cpe:2.3:a:hgiga:msr45_isherlock-user:4.5-117
-
cpe:2.3:a:hgiga:msr45_isherlock-user:4.5-81
-
cpe:2.3:a:hgiga:ssr45_isherlock-antispam:4.5-130
-
cpe:2.3:a:hgiga:ssr45_isherlock-user:4.5-114
-
cpe:2.3:a:hgiga:ssr45_isherlock-user:4.5-115
-
cpe:2.3:a:hgiga:ssr45_isherlock-user:4.5-117