CVE-2021-24007 - Fortinet Fortimail
Critical 9.8
Multiple improper neutralization of special elements of SQL commands vulnerabilities in FortiMail before 6.4.4 may allow a non-authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP requests.
Affected software
Fortinet Fortimail