Haraka · Haraka · CVE-2016-1000282
**Name of the Vulnerable Software and Affected Versions**
Haraka versions 2.8.8 and earlier
**Description**
The issue concerns a plugin for processing attachments for zip files in Haraka, which can lead to command injection in versions 2.8.8 and earlier.
**Recommendations**
For Haraka versions 2.8.8 and earlier, update to a version later than 2.8.8 to resolve the issue.