Courier-Mta Courtier-Authlib vulnerabilities
2 known vulnerabilities affecting courier-mta/courtier-authlib.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-2380MEDIUMCVSS 5.1v0.52v0.53+18 more2008-12-22
CVE-2008-2380 [MEDIUM] CWE-89 CVE-2008-2380: SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin loc
SQL injection vulnerability in authpgsqllib.c in Courier-Authlib before 0.62.0, when a non-Latin locale Postgres database is used, allows remote attackers to execute arbitrary SQL commands via query parameters containing apostrophes.
nvd
CVE-2008-2667MEDIUMCVSS 5.1v0.52v0.53+15 more2008-07-07
CVE-2008-2667 [MEDIUM] CWE-89 CVE-2008-2667: SQL injection vulnerability in the Courier Authentication Library (aka courier-authlib) before 0.60.
SQL injection vulnerability in the Courier Authentication Library (aka courier-authlib) before 0.60.6 on SUSE openSUSE 10.3 and 11.0, and other platforms, when MySQL and a non-Latin character set are used, allows remote attackers to execute arbitrary SQL commands via the username and unspecified other vectors.
nvd