Lucene search
K

41 matches found

RedhatCVE
RedhatCVE
added 2026/04/03 10:58 a.m.5 views

CVE-2026-29138

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to claim another user's PGP signature as their own...

7.5CVSS5.9AI score0.00217EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/03 10:58 a.m.2 views

CVE-2026-29131

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to read the contents of emails encrypted for other users...

7.5CVSS5.9AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2026/04/02 9:16 a.m.3 views

CVE-2026-29131

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to read the contents of emails encrypted for other users...

7.5CVSS0.00226EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/02 8:47 a.m.3 views

CVE-2026-29138

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to claim another user's PGP signature as their own...

6.3CVSS5.9AI score0.00217EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.5 views

PT-2026-29699

SEPPmail Secure Email Gateway before version 15.0.3 allows attackers with a specially crafted email address to read the contents of emails encrypted for other users...

4.9CVSS5.9AI score0.00226EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.24 views

EUVD-2017-0075

Malware in sbrugna...

6.1CVSS6AI score0.00923EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.30 views

GitLab < 16.9.6 / 16.10 < 16.10.4 / 16.11 < 16.11.1 (CVE-2024-1347)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE affecting all versions before 16.9.6, all versions starting from 16.10 before 16.10.4, all versions starting from 16.11 before 16.11.1. Under certain...

5.3CVSS5.2AI score0.00469EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2024/04/24 12:0 a.m.38 views

Gitlab -- vulnerabilities

Gitlab reports: GitLab account takeover, under certain conditions, when using Bitbucket as an OAuth provider Path Traversal leads to DoS and Restricted File Read Unauthenticated ReDoS in FileFinder when using wildcard filters in project file search Personal Access Token scopes not honoured by...

8.8CVSS7.2AI score0.25965EPSS
Exploits2References1
Github Security Blog
Github Security Blog
added 2023/06/21 6:31 p.m.23 views

Broadleaf vulnerable to Cross-site Scripting

Broadleaf 5.x and 6.x including 5.2.25-GA and 6.2.6-GA was discovered to contain a cross-site scripting XSS vulnerability via a customer signup with a crafted email address. This is fixed in 6.2.7-GA...

6.1CVSS5.7AI score0.00498EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:36 a.m.4 views

SUSE CVE-2013-4389

Multiple format string vulnerabilities in logsubscriber.rb files in the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15 allow remote attackers to cause a denial of service via a crafted e-mail address that is improperly handled during construction of a log message...

4.3CVSS6.8AI score0.03135EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:26 a.m.7 views

SUSE CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

7.8CVSS7.7AI score0.0155EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:54 a.m.6 views

SUSE CVE-2016-10034

The setFrom function in the Sendmail adapter in the zend-mail component before 2.4.11, 2.5.x, 2.6.x, and 2.7.x before 2.7.2, and Zend Framework before 2.4.11 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a " backslash double...

9.8CVSS8AI score0.38438EPSS
Exploits10References4
RedhatCVE
RedhatCVE
added 2022/05/20 11:9 p.m.20 views

CVE-2017-15612

mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline such as in java\nscript: or a crafted email address, related to the escape and autolink functions...

6.1CVSS3.6AI score0.00923EPSS
Exploits1References1
OSV
OSV
added 2022/05/17 12:26 a.m.19 views

GHSA-HPV5-V8G5-C864 Cross-site Scripting in Mistune

mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline such as in java\nscript: or a crafted email address, related to the escape and autolink functions...

6.1CVSS5.8AI score0.00923EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/05/17 12:26 a.m.28 views

Cross-site Scripting in Mistune

mistune.py in Mistune 0.7.4 allows XSS via an unexpected newline such as in java\nscript: or a crafted email address, related to the escape and autolink functions...

6.1CVSS5.7AI score0.00923EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2022/05/17 12:18 a.m.13 views

GHSA-HGR8-G756-VMG9 Zeta Components Mail Arbitrary code execution via a crafted email address

The send function in the ezcMailMtaTransport class in Zeta Components Mail before 1.8.2 does not properly restrict the set of characters used in the ezcMail returnPath property, which might allow remote attackers to execute arbitrary code via a crafted email address, as demonstrated by one...

8.1CVSS8.1AI score0.10652EPSS
Exploits3References9
Github Security Blog
Github Security Blog
added 2022/05/17 12:18 a.m.19 views

Zeta Components Mail Arbitrary code execution via a crafted email address

The send function in the ezcMailMtaTransport class in Zeta Components Mail before 1.8.2 does not properly restrict the set of characters used in the ezcMail returnPath property, which might allow remote attackers to execute arbitrary code via a crafted email address, as demonstrated by one...

8.1CVSS7.7AI score0.10652EPSS
Exploits3References9Affected Software1
NVD
NVD
added 2020/03/19 6:15 p.m.18 views

CVE-2019-20519

ERPNext 11.1.47 allows reflected XSS via the PATHINFO to the user/ URI, as demonstrated by a crafted e-mail address...

7.4CVSS6.2AI score0.00786EPSS
Exploits1References1
OSV
OSV
added 2020/01/14 5:15 p.m.5 views

DEBIAN-CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

7.8CVSS7.6AI score0.0155EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/01/14 4:13 p.m.31 views

CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address...

8AI score0.0155EPSS
Exploits0References5
Rows per page
Query Builder