CVE-2014-2727by Jeremyin Security Bulletinson Posted on February 19, 2020 The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection.