pineapp 漏洞与 CVE 列表（7）

产品（CPE）: — CVE 数: 7

pineapp 漏洞概览

汇总 pineapp 相关全部产品的 CVE 与安全漏洞情报，包括 CVSS、EPSS、公开时间与漏洞情报数据。

常见弱点模式包括跨站脚本与路径处理缺陷，在软件部署与生产负载使用场景中可能带来文件覆盖与会话劫持等风险。

相关漏洞数据主要来源于公开漏洞披露与安全公告，可用于评估历史漏洞暴露面与修复优先级。

漏洞分布趋势（近 24 个月）

CVE	摘要	来源	最高 CVSS	EPSS %	公开时间	更新时间
CVE-2021-36720	PineApp - Mail Secure - Attacker sending a request to :/blocking.php?url=<script>alert(1)</script> and stealing cookies .	[email protected]	6.1	0.56%	2021-12-08	2024-11-21
CVE-2013-6831	PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms has a sudoers file that does not properly restrict user specifications, which allows local users to gain privileges via a sudo command that leverages access to the qmailq account.	[email protected]	7.2	1.01%	2013-11-20	2026-04-29
CVE-2013-6830	admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms allows remote attackers to execute arbitrary commands via shell metacharacters in the nsserver parameter during an nslookup operation.	[email protected]	7.5	8.93%	2013-11-20	2026-04-29
CVE-2013-6829	admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.	[email protected]	7.5	78.34%	2013-11-20	2026-04-29
CVE-2013-6828	admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it parameter.	[email protected]	6.4	1.34%	2013-11-20	2026-04-29
CVE-2013-6827	Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg parameter.	[email protected]	5.0	1.44%	2013-11-20	2026-04-29
CVE-2013-4987	PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping" command.	[email protected]	8.5	2.99%	2013-11-08	2026-04-29

cvelogic Threat Intelligence