CVE-2003-1523
Dbmail - SQL Injection
Title source: ruleDescription
SQL injection vulnerability in the IMAP daemon in dbmail 1.1 allows remote attackers to execute arbitrary SQL commands via the (1) login username, (2) mailbox name, and possibly other attack vectors.
Scores
EPSS
0.0040
EPSS Percentile
60.1%
Classification
CWE
CWE-89
Status
draft
Affected Products (2)
dbmail/dbmail
dbmail/dbmail
Timeline
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026