Arbitrary Code Execution Vulnerability in SYNCK GRAPHICA Mailform Pro CGI 4.1.4 and 4.1.5

Arbitrary Code Execution Vulnerability in SYNCK GRAPHICA Mailform Pro CGI 4.1.4 and 4.1.5

CVE-2015-0883 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

SYNCK GRAPHICA Mailform Pro CGI 4.1.4 and 4.1.5, when the mailauth module is enabled, does not properly send e-mail messages, which allows remote attackers to execute arbitrary code via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.