High severity7.5NVD Advisory· Published Jul 18, 2019· Updated Jun 17, 2026
CVE-2019-1010246
CVE-2019-1010246
Description
MailCleaner before c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9 is affected by: Unauthenticated MySQL database password information disclosure. The impact is: MySQL database content disclosure (e.g. username, password). The component is: The API call in the function allowAction() in NewslettersController.php. The attack vector is: HTTP Get request. The fixed version is: c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9+ 1 more
- (no CPE)range: <c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9
- (no CPE)range: before c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9 [fixed: c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9]
Patches
Vulnerability mechanics
References
1- github.com/MailCleaner/MailCleaner/commit/c888fbb6aaa7c5f8400f637bcf1cbb844de46cd9nvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.