Vulnerability Database

296,335

Total vulnerabilities in the database

CVE-2003-1523

SQL injection vulnerability in the IMAP daemon in dbmail 1.1 allows remote attackers to execute arbitrary SQL commands via the (1) login username, (2) mailbox name, and possibly other attack vectors.

  • Published: Dec 31, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-1523
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
dbmail / dbmail 1.1 1.1.x
dbmail / dbmail 1.0 1.0.x