Nuevomailer · Nuevomailer · CVE-2017-9730
**Name of the Vulnerable Software and Affected Versions**
nuevoMailer versions 6.0 and earlier
**Description**
The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `r` parameter in the rdr.php file.
**Recommendations**
For nuevoMailer versions 6.0 and earlier, update to a version later than 6.0 to resolve the issue.