Filtered by vendor Spencer Miles Subscriptions
Filtered by product W3mail Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2001-1100 1 Spencer Miles 1 W3mail 2024-11-20 N/A
sendmessage.cgi in W3Mail 1.0.2, and possibly other CGI programs, allows remote attackers to execute arbitrary commands via shell metacharacters in any field of the 'Compose Message' page.