Description
nph-maillist.pl allows remote attackers to execute arbitrary commands via shell metacharacters ("`") in the email address.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Kanedaaa · perlremotecgi
https://www.exploit-db.com/exploits/20744
Scores
EPSS
0.1310
EPSS Percentile
94.1%
Details
Status
published
Products (2)
matt_tourtillott/nph-maillist
3.0
matt_tourtillott/nph-maillist
3.5
Published
Jul 02, 2001
Tracked Since
Feb 18, 2026