WindMail allows remote attackers to read arbitrary files or execute commands via shell metacharacters.
CVSS Metrics
