Skip to main content

Spamtitan

10 CVEs product

Monthly

CVE-2020-35658 MEDIUM POC This Month

SpamTitan before 7.09 allows attackers to tamper with backups, because backups are not encrypted. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Spamtitan
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2020-24046 HIGH POC This Week

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Spamtitan
NVD GitHub
CVSS 3.1
7.2
EPSS
3.4%
CVE-2020-24045 HIGH POC This Week

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass VMware Spamtitan
NVD GitHub
CVSS 3.1
7.2
EPSS
1.6%
CVE-2020-11804 HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection PHP Spamtitan
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
7.1%
CVE-2020-11803 HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection PHP Spamtitan
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
7.5%
CVE-2020-11700 MEDIUM POC This Month

An issue was discovered in Titan SpamTitan 7.07. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Spamtitan
NVD GitHub Exploit-DB
CVSS 3.1
6.5
EPSS
7.1%
CVE-2020-11699 HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection PHP Spamtitan
NVD GitHub Exploit-DB
CVSS 3.1
8.8
EPSS
9.6%
CVE-2020-11698 CRITICAL POC THREAT Emergency

An issue was discovered in Titan SpamTitan 7.07. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection PHP Spamtitan
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
73.7%
CVE-2019-6800 HIGH POC This Week

In TitanHQ SpamTitan through 7.03, a vulnerability exists in the spam rule update function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Code Injection Spamtitan
NVD
CVSS 3.0
7.5
EPSS
1.3%
CVE-2014-2965 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan before 6.04 allows remote attackers to inject arbitrary web script or HTML via the sortdir parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS PHP Spamtitan
NVD
CVSS 2.0
4.3
EPSS
0.8%
EPSS 1% CVSS 5.3
MEDIUM POC This Month

SpamTitan before 7.09 allows attackers to tamper with backups, because backups are not encrypted. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Spamtitan
NVD
EPSS 3% CVSS 7.2
HIGH POC This Week

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Spamtitan
NVD GitHub
EPSS 2% CVSS 7.2
HIGH POC This Week

A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass VMware Spamtitan
NVD GitHub
EPSS 7% CVSS 8.8
HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection PHP +1
NVD GitHub Exploit-DB
EPSS 8% CVSS 8.8
HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection PHP +1
NVD GitHub Exploit-DB
EPSS 7% CVSS 6.5
MEDIUM POC This Month

An issue was discovered in Titan SpamTitan 7.07. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Spamtitan
NVD GitHub Exploit-DB
EPSS 10% CVSS 8.8
HIGH POC This Week

An issue was discovered in Titan SpamTitan 7.07. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection PHP Spamtitan
NVD GitHub Exploit-DB
EPSS 74% CVSS 9.8
CRITICAL POC THREAT Emergency

An issue was discovered in Titan SpamTitan 7.07. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection PHP Spamtitan
NVD GitHub Exploit-DB
EPSS 1% CVSS 7.5
HIGH POC This Week

In TitanHQ SpamTitan through 7.03, a vulnerability exists in the spam rule update function. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Code Injection Spamtitan
NVD
EPSS 1% CVSS 4.3
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan before 6.04 allows remote attackers to inject arbitrary web script or HTML via the sortdir parameter. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS PHP Spamtitan
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy