China Mobile OA Mailbox PC 安全漏洞

China Mobile OA Mailbox PC is a mailbox related application from China Mobile China. A security vulnerability exists in China Mobile OA Mailbox PC version v2.9.23, which can be exploited by an attacker to send a crafted EML file to a user's OA mailbox, and when the user clicks on the interaction,...

PT-2018-13849 · Gogs · Gogs

Name of the Vulnerable Software and Affected Versions: Gogs version 0.11.53 Description: The issue allows an attacker to trigger MIME type sniffing using a crafted .eml file, leading to XSS. This is demonstrated by Internet Explorer and is caused by the lack of an "X-Content-Type-Options: nosniff...