Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/05/11 8:37 p.m.32 views

CVE-2026-43880 WWBN AVideo: Unauthenticated Arbitrary Email Sending via sendEmail.json.php Allows Phishing from Site's Legitimate From Address

WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/sendEmail.json.php exposes two branches depending on whether contactForm=1 is submitted. When the parameter is omitted, the endpoint sets $sendTo to an attacker-supplied email and, for unauthenticated...

5.3CVSS0.00229EPSS
Exploits0References2
CVE
CVE
added 2026/05/07 7:54 p.m.20 views

CVE-2026-8142

Technical details are not publicly available in the provided documents. Monitor for updates.

6.5CVSS5.8AI score0.00115EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/09/17 12:0 a.m.5 views

PT-2019-4125 · Trustwave +1 · Opendmarc +1

Name of the Vulnerable Software and Affected Versions: OpenDMARC versions 1.3.2 and earlier OpenDMARC versions 1.4.x through 1.4.0-Beta1 Description: The issue is related to a signature-bypass vulnerability, specifically when dealing with multiple From: addresses in email messages. This could...

9.8CVSS9.2AI score0.02457EPSS
Exploits0References24
CNVD
CNVD
added 2018/01/11 12:0 a.m.3 views

Stalker CommuniGate Pro Label Validation Vulnerability

Stalker CommuniGate Pro CGP is a comprehensive mail transfer agent MTA developed by Stalker Software, Inc. that supports multiple platforms. A security vulnerability in the implementation of the 'XML Interface to Messaging, Scheduling, and Signaling' XIMSS protocol in Stalker CGP version 6.2 stem...

5.7CVSS7AI score0.0089EPSS
Exploits2References1
Rows per page
Query Builder