CVE-2017-9730

by Jeremyin Security Bulletinson Posted on

SQL injection vulnerability in rdr.php in nuevoMailer version 6.0 and earlier allows remote attackers to execute arbitrary SQL commands via the “r” parameter.