Lucene search

K
nvd[email protected]NVD:CVE-2012-0389
HistoryJan 24, 2012 - 6:55 p.m.

CVE-2012-0389

2012-01-2418:55:01
CWE-79
web.nvd.nist.gov

5.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.528 Medium

EPSS

Percentile

97.6%

Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Username parameter.

Affected configurations

NVD
Node
mailenablemailenableRange4.26-pro
OR
mailenablemailenableMatch1.2professional
OR
mailenablemailenableMatch1.2aprofessional
OR
mailenablemailenableMatch1.5professional
OR
mailenablemailenableMatch1.6professional
OR
mailenablemailenableMatch1.7professional
OR
mailenablemailenableMatch1.17professional
OR
mailenablemailenableMatch1.18professional
OR
mailenablemailenableMatch1.19professional
OR
mailenablemailenableMatch1.51professional
OR
mailenablemailenableMatch1.52professional
OR
mailenablemailenableMatch1.53professional
OR
mailenablemailenableMatch1.54professional
OR
mailenablemailenableMatch1.70professional
OR
mailenablemailenableMatch1.71professional
OR
mailenablemailenableMatch1.72professional
OR
mailenablemailenableMatch1.73professional
OR
mailenablemailenableMatch1.74professional
OR
mailenablemailenableMatch1.75professional
OR
mailenablemailenableMatch1.76professional
OR
mailenablemailenableMatch1.77professional
OR
mailenablemailenableMatch1.78professional
OR
mailenablemailenableMatch1.79professional
OR
mailenablemailenableMatch3.0-pro
OR
mailenablemailenableMatch3.01-pro
OR
mailenablemailenableMatch3.02-pro
OR
mailenablemailenableMatch3.03-pro
OR
mailenablemailenableMatch3.04-pro
OR
mailenablemailenableMatch3.5-pro
OR
mailenablemailenableMatch3.6-pro
OR
mailenablemailenableMatch3.10-pro
OR
mailenablemailenableMatch3.11-pro
OR
mailenablemailenableMatch3.12-pro
OR
mailenablemailenableMatch3.13-pro
OR
mailenablemailenableMatch3.14-pro
OR
mailenablemailenableMatch3.51-pro
OR
mailenablemailenableMatch3.52professional
OR
mailenablemailenableMatch3.52-pro
OR
mailenablemailenableMatch3.53-pro
OR
mailenablemailenableMatch3.61-pro
OR
mailenablemailenableMatch3.62-pro
OR
mailenablemailenableMatch3.63-pro
OR
mailenablemailenableMatch4.0-pro
OR
mailenablemailenableMatch4.1-pro
OR
mailenablemailenableMatch4.01-pro
OR
mailenablemailenableMatch4.11-pro
OR
mailenablemailenableMatch4.12-pro
OR
mailenablemailenableMatch4.13-pro
OR
mailenablemailenableMatch4.14-pro
OR
mailenablemailenableMatch4.15-pro
OR
mailenablemailenableMatch4.16-pro
OR
mailenablemailenableMatch4.17-pro
OR
mailenablemailenableMatch4.22-pro
OR
mailenablemailenableMatch4.23-pro
OR
mailenablemailenableMatch4.24-pro
OR
mailenablemailenableMatch4.25-pro
Node
mailenablemailenableRange4.26-enterprise
OR
mailenablemailenableMatch1.00enterprise
OR
mailenablemailenableMatch1.1enterprise
OR
mailenablemailenableMatch1.01enterprise
OR
mailenablemailenableMatch1.02enterprise
OR
mailenablemailenableMatch1.2enterprise
OR
mailenablemailenableMatch1.03enterprise
OR
mailenablemailenableMatch1.04enterprise
OR
mailenablemailenableMatch1.21enterprise
OR
mailenablemailenableMatch1.22enterprise
OR
mailenablemailenableMatch1.23enterprise
OR
mailenablemailenableMatch1.24enterprise
OR
mailenablemailenableMatch1.25enterprise
OR
mailenablemailenableMatch1.26enterprise
OR
mailenablemailenableMatch3.0-enterprise
OR
mailenablemailenableMatch3.01-enterprise
OR
mailenablemailenableMatch3.02-enterprise
OR
mailenablemailenableMatch3.03-enterprise
OR
mailenablemailenableMatch3.04-enterprise
OR
mailenablemailenableMatch3.5-enterprise
OR
mailenablemailenableMatch3.6-enterprise
OR
mailenablemailenableMatch3.10-enterprise
OR
mailenablemailenableMatch3.11-enterprise
OR
mailenablemailenableMatch3.12-enterprise
OR
mailenablemailenableMatch3.13-enterprise
OR
mailenablemailenableMatch3.14-enterprise
OR
mailenablemailenableMatch3.51-enterprise
OR
mailenablemailenableMatch3.52enterprise
OR
mailenablemailenableMatch3.52-enterprise
OR
mailenablemailenableMatch3.53-enterprise
OR
mailenablemailenableMatch3.61-enterprise
OR
mailenablemailenableMatch3.62-enterprise
OR
mailenablemailenableMatch3.63-enterprise
OR
mailenablemailenableMatch4.0-enterprise
OR
mailenablemailenableMatch4.01-enterprise
OR
mailenablemailenableMatch4.1-enterprise
OR
mailenablemailenableMatch4.11-enterprise
OR
mailenablemailenableMatch4.12-enterprise
OR
mailenablemailenableMatch4.13-enterprise
OR
mailenablemailenableMatch4.14-enterprise
OR
mailenablemailenableMatch4.15-enterprise
OR
mailenablemailenableMatch4.16-enterprise
OR
mailenablemailenableMatch4.17-enterprise
OR
mailenablemailenableMatch4.22-enterprise
OR
mailenablemailenableMatch4.23-enterprise
OR
mailenablemailenableMatch4.24-enterprise
OR
mailenablemailenableMatch4.25-enterprise
Node
mailenablemailenableRange4.26premium
OR
mailenablemailenableMatch4.1premium
OR
mailenablemailenableMatch4.2premium
OR
mailenablemailenableMatch4.21premium
OR
mailenablemailenableMatch4.22premium
OR
mailenablemailenableMatch4.23premium
OR
mailenablemailenableMatch4.24premium
OR
mailenablemailenableMatch4.25premium
Node
mailenablemailenableMatch5.0professional
OR
mailenablemailenableMatch5.01professional
OR
mailenablemailenableMatch5.02professional
OR
mailenablemailenableMatch5.03professional
OR
mailenablemailenableMatch5.04professional
OR
mailenablemailenableMatch5.5professional
OR
mailenablemailenableMatch5.05professional
OR
mailenablemailenableMatch5.06professional
OR
mailenablemailenableMatch5.07professional
OR
mailenablemailenableMatch5.10professional
OR
mailenablemailenableMatch5.11professional
OR
mailenablemailenableMatch5.51professional
OR
mailenablemailenableMatch5.52professional
Node
mailenablemailenableMatch5.0enterprise
OR
mailenablemailenableMatch5.01enterprise
OR
mailenablemailenableMatch5.02enterprise
OR
mailenablemailenableMatch5.03enterprise
OR
mailenablemailenableMatch5.04enterprise
OR
mailenablemailenableMatch5.5enterprise
OR
mailenablemailenableMatch5.05enterprise
OR
mailenablemailenableMatch5.06enterprise
OR
mailenablemailenableMatch5.07enterprise
OR
mailenablemailenableMatch5.10enterprise
OR
mailenablemailenableMatch5.11enterprise
OR
mailenablemailenableMatch5.51enterprise
OR
mailenablemailenableMatch5.52enterprise
Node
mailenablemailenableMatch5.0premium
OR
mailenablemailenableMatch5.01premium
OR
mailenablemailenableMatch5.02premium
OR
mailenablemailenableMatch5.03premium
OR
mailenablemailenableMatch5.04premium
OR
mailenablemailenableMatch5.05premium
OR
mailenablemailenableMatch5.5premium
OR
mailenablemailenableMatch5.06premium
OR
mailenablemailenableMatch5.07premium
OR
mailenablemailenableMatch5.10premium
OR
mailenablemailenableMatch5.11premium
OR
mailenablemailenableMatch5.51premium
OR
mailenablemailenableMatch5.52premium
Node
mailenablemailenableMatch6.0professional
OR
mailenablemailenableMatch6.01professional
OR
mailenablemailenableMatch6.02professional
Node
mailenablemailenableMatch6.0enterprise
OR
mailenablemailenableMatch6.01enterprise
OR
mailenablemailenableMatch6.02enterprise
Node
mailenablemailenableMatch6.0premium
OR
mailenablemailenableMatch6.01premium
OR
mailenablemailenableMatch6.02premium

5.6 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.528 Medium

EPSS

Percentile

97.6%