| Bug | Description |
|---|
| CVE-2020-1946 | In Apache SpamAssassin before 3.4.5, malicious rule configuration (.cf ... |
| CVE-2020-1931 | A command execution issue was found in Apache SpamAssassin prior to 3. ... |
| CVE-2020-1930 | A command execution issue was found in Apache SpamAssassin prior to 3. ... |
| CVE-2019-12420 | In Apache SpamAssassin before 3.4.3, a message can be crafted in a way ... |
| CVE-2018-11805 | In Apache SpamAssassin before 3.4.3, nefarious CF files can be configu ... |
| CVE-2018-11781 | Apache SpamAssassin 3.4.2 fixes a local user code injection in the met ... |
| CVE-2018-11780 | A potential Remote Code Execution bug exists with the PDFInfo plugin i ... |
| CVE-2017-15705 | A denial of service vulnerability was identified that exists in Apache ... |
| CVE-2007-2873 | SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as ... |
| CVE-2007-0451 | Apache SpamAssassin before 3.1.8 allows remote attackers to cause a de ... |
| CVE-2006-2447 | SpamAssassin before 3.1.3, when running with vpopmail and the paranoid ... |
| CVE-2005-3351 | SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e- ... |
| CVE-2005-1266 | Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to ... |
| CVE-2004-0796 | SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to ca ... |
| CVE-2003-1557 | Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, ... |