Softnext: >> Mail Sqr Expert >> 230330 Security Vulnerabilities
Softnext Mail SQR Expert has a path traversal vulnerability within its parameter in a specific URL. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and download arbitrary system files.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-12-15
Softnext Mail SQR Expert is an email management platform, it has inadequate filtering for a specific URL parameter within a specific function. An unauthenticated remote attacker can perform Blind SSRF attack to discover internal network topology base on URL error response.
CVSS Score
5.3
EPSS Score
0.003
Published
2023-12-15