Remote Command Injection Vulnerability in HGiga MailSherlock

Remote Command Injection Vulnerability in HGiga MailSherlock

CVE-2020-35851 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

HGiga MailSherlock does not validate specific parameters properly. Attackers can use the vulnerability to launch Command inject attacks remotely and execute arbitrary commands of the system.

Learn more about our Web Application Penetration Testing UK.