Lucene search
K

14 matches found

NVD
NVD
added 2026/05/29 8:16 p.m.14 views

CVE-2026-47123

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifying agent user replies based on In-Reply-To / References headers. The notification reply path...

7.5CVSS0.00145EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/29 7:51 p.m.9 views

CVE-2026-47123 FreeScout: Agent Impersonation via Missing HMAC Verification on Notification Reply Message-ID Path

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifying agent user replies based on In-Reply-To / References headers. The notification reply path...

7.5CVSS5.9AI score0.00145EPSS
Exploits0References2
OSV
OSV
added 2026/03/12 4:38 p.m.4 views

GHSA-4CM8-XPFV-JV6F ZeptoClaw: Email Sender Spoofing to bypass Header-Only From Allowlist Validation

Summary The email channel authorizes senders based on the parsed From header identity only. If upstream email authentication/enforcement is weak for example, relaxed SPF/DKIM/DMARC handling, an attacker can spoof an allowlisted sender address and have the message treated as trusted input. Details...

6.5CVSS5.9AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/06 12:10 a.m.7 views

CVE-2025-61084

MDaemon Mail Server 23.5.2 validates SPF, DKIM, and DMARC using the email enclosed in angle brackets in the From: header of SMTP DATA. An attacker can craft a From: header with multiple invisible Unicode thin spaces to display a spoofed sender while passing validation, allowing email spoofing eve...

7.1CVSS6.8AI score0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/05 12:0 a.m.2 views

CVE-2025-61084

MDaemon Mail Server 23.5.2 validates SPF, DKIM, and DMARC using the email enclosed in angle brackets in the From: header of SMTP DATA. An attacker can craft a From: header with multiple invisible Unicode thin spaces to display a spoofed sender while passing validation, allowing email spoofing eve...

6.5AI score0.00196EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.10 views

PT-2025-45105

Name of the Vulnerable Software and Affected Versions MDaemon Mail Server version 23.5.2 Description MDaemon Mail Server version 23.5.2 validates Sender Policy Framework SPF, DomainKeys Identified Mail DKIM, and Domain-based Message Authentication, Reporting & Conformance DMARC using the email...

7.1CVSS6.5AI score0.00196EPSS
Exploits0References3
CVE
CVE
added 2025/11/05 12:0 a.m.17 views

CVE-2025-61084

MDaemon Mail Server 23.5.2 is described as validating SPF, DKIM, and DMARC using the From header content enclosed in angle brackets () during SMTP DATA. An attacker can craft a From header using multiple invisible Unicode thin spaces to display a spoofed sender while still passing validation, ena...

7.1CVSS6.5AI score0.00196EPSS
Exploits0References1
CERT
CERT
added 2025/10/28 12:0 a.m.16 views

Authenticated SMTP users may spoof other identities due to ambiguous “From” header interpretation

Overview Email message header syntax can be exploited to bypass authentication protocols such as SPF, DKIM, and DMARC. These exploits enable attackers to deliver spoofed emails that appear to originate from trusted sources. Recent research has explored using the originator fields, such as From: a...

6.5AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/04 12:0 a.m.3 views

RockyLinux 10 : thunderbird (RLSA-2025:8196)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:8196 advisory. thunderbird: JavaScript Execution via Spoofed PDF Attachment and file:/// Link CVE-2025-3909 thunderbird: Sender Spoofing via Malformed From Header in...

8.1CVSS6.8AI score0.00363EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-3875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Thunderbird parses addresses in a way that can allow sender spoofing in case the server allows an invalid From address to be used. For example, if the From head...

7.5CVSS7.3AI score0.0032EPSS
Exploits0References2
OSV
OSV
added 2020/05/22 7:15 p.m.3 views

DEBIAN-CVE-2020-12397

By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird 68.8.0...

4.3CVSS8.9AI score0.00597EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/05/11 9:54 a.m.5 views

Mozilla: Sender Email Address Spoofing using encoded Unicode characters

By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird 68.8.0...

4.3CVSS7.4AI score0.00597EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/05/11 9:40 a.m.6 views

Mozilla: Sender Email Address Spoofing using encoded Unicode characters

By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird 68.8.0...

4.3CVSS7.4AI score0.00597EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2020/05/11 9:1 a.m.6 views

Mozilla: Sender Email Address Spoofing using encoded Unicode characters

By encoding Unicode whitespace characters within the From email header, an attacker can spoof the sender email address that Thunderbird displays. This vulnerability affects Thunderbird 68.8.0...

4.3CVSS7.4AI score0.00597EPSS
Exploits0References5
Rows per page
Query Builder