CVE-2018-15136

Severity CVSS v4.0:
Pending analysis
Type:
CWE-20 Input Validation
Publication date:
30/01/2019
Last modified:
22/02/2019

Description

TitanHQ SpamTitan before 7.01 has Improper input validation. This allows internal attackers to bypass the anti-spam filter to send malicious emails to an entire organization by modifying the URL requests sent to the application.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:titanhq:spamtitan:*:*:*:*:*:*:*:* 7.01 (excluding)


References to Advisories, Solutions, and Tools