Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

247 matches found

RedHat Linux
RedHat Linuxadded 2007/02/24 2:41 a.m.2 views

security flaw

A regression error in Mozilla Firefox 2.x before 2.0.0.2 and 1.x before 1.5.0.10, and SeaMonkey 1.1 before 1.1.1 and 1.0 before 1.0.8, allows remote attackers to execute arbitrary JavaScript as the user via an HTML mail message with a javascript: URI in an 1 img, 2 link, or 3 style tag, which...

6.8CVSS6.2AI score0.0317EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2007/01/17 12:0 a.m.36 views

Fedora Core 5 : thunderbird-1.5.0.8-1.fc5 (2006-1194)

Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were found in the way Thunderbird processes certain malformed JavaScript code. A malicious HTML mail message could cause the execution of JavaScript code in such a way that could cause Thunderbird to crash or execute...

7.5CVSS8.8AI score0.22092EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2006/11/08 8:46 a.m.18 views

Critical: Red Hat Security Advisory: thunderbird security update

Updated thunderbird packages that fix several security bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. Several flaws were foun...

7.5CVSS6.6AI score0.22092EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2006/07/05 12:0 a.m.41 views

CentOS 4 : thunderbird (CESA-2006:0330)

Updated thunderbird packages that fix various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 24 Apr 2006 The erratum text has been updated to include the details of additional issu...

10CVSS8.4AI score0.41202EPSS
Exploits5References24
Tenable Nessus
Tenable Nessusadded 2006/04/26 12:0 a.m.33 views

RHEL 4 : thunderbird (RHSA-2006:0330)

Updated thunderbird packages that fix various bugs are now available for Red Hat Enterprise Linux 4. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 24 Apr 2006 The erratum text has been updated to include the details of additional issu...

10CVSS8.4AI score0.41202EPSS
Exploits5References44
securityvulns
securityvulnsadded 2005/12/02 12:0 a.m.50 views

[Full-disclosure] SEC Consult SA-20051202-1 :: GMX Webmail XSS

========================================================== SEC-CONSULT Security Advisory 20051202-0 GMX / MSIE XSS ========================================================== Product: GMX Webmail V ?.? in combination with MSIE maybe other browsers Remarks: no other Versions tested but very likely...

0.1AI score
Exploits0
Cvelist
Cvelistadded 2005/11/19 1:0 a.m.17 views

CVE-2005-3692

Cross-site scripting XSS vulnerability in AMAX Magic Winmail Server 4.2 build 0824 and earlier allows remote attackers to inject arbitrary web script or HTML via the 1 retid parameter in badlogin.php, 2 Content-Type headers in HTML mails, and 3 HTML mail attachments...

5.7AI score0.00794EPSS
Exploits1References8
Cent OS
Cent OSadded 2005/07/22 3:22 p.m.80 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2005:601 Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and...

7.5CVSS5.9AI score0.82043EPSS
Exploits7References8
RedHat Linux
RedHat Linuxadded 2005/07/21 5:42 p.m.33 views

Important: Red Hat Security Advisory: thunderbird security update

Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way...

7.5CVSS5.9AI score0.82043EPSS
Exploits7References2
Tenable Nessus
Tenable Nessusadded 2005/07/21 12:0 a.m.42 views

Fedora Core 4 : thunderbird-1.0.6-1.1.fc4 (2005-606)

Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way Thunderbird handled anonymous functions during regular expression string replacement. It is possible for a malicious HTML mail to capture a random block of client memory. The Common Vulnerabilities and...

7.5CVSS5.9AI score0.82043EPSS
Exploits7References1
Tenable Nessus
Tenable Nessusadded 2005/07/21 12:0 a.m.32 views

Fedora Core 3 : thunderbird-1.0.6-1.1.fc3 (2005-604)

Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way Thunderbird handled anonymous functions during regular expression string replacement. It is possible for a malicious HTML mail to capture a random block of client memory. The Common Vulnerabilities and...

7.5CVSS5.9AI score0.82043EPSS
Exploits7References1
Cvelist
Cvelistadded 2005/07/17 4:0 a.m.25 views

CVE-2004-2226

Mozilla Mail 1.7.1 and 1.7.3, and Thunderbird before 0.9, when HTML-Mails is enabled, allows remote attackers to determine valid e-mail addresses via an HTML e-mail that references a Cascading Style Sheets CSS document on the attacker's server...

6.5AI score0.00404EPSS
Exploits0References4
securityvulns
securityvulnsadded 2004/09/08 12:0 a.m.25 views

[SNS Advisory No.77] Usermin Remote Arbitrary Shell Command Execution Vulnerability

---------------------------------------------------------------------- SNS Advisory No.77 Usermin Remote Arbitrary Shell Command Execution Vulnerability Problem first discovered on: Sun, 11 Apr 2004 Published on: Tue, 7 Sept 2004...

1.1AI score
Exploits0
OSV
OSVadded 2003/01/02 5:0 a.m.1 views

DEBIAN-CVE-2002-1388

Cross-site scripting XSS vulnerability in MHonArc before 2.5.14 allows remote attackers to inject arbitrary HTML into web archive pages via HTML mail messages...

4.3CVSS6.3AI score0.00366EPSS
Exploits0References1
exploitpack
exploitpackadded 2002/04/24 12:0 a.m.10 views

Microsoft Outlook Express 5.5 - Denial of Service Device Denial of Service

Microsoft Outlook Express 5.5 - Denial of Service Device Denial of Service source: https://www.securityfocus.com/bid/4584/info A denial of service issue has been reported in Microsoft Outlook Express. Reportedly, Outlook Express does not adequately handle unusually crafted HTML mail messages...

7.3AI score
Exploits0
securityvulns
securityvulnsadded 2002/04/15 12:0 a.m.31 views

More fun with html mail: Outlook Express, Internet Explorer, Other etc

Sunday, April 14, 2002 1. Not Possible Technically it cannot be possible to create an html mail message from a mailto url scheme without user input. However shoe-horning html in through insertion of script tags does make it possible. Default installation of Outlook Express and probably Outlook, i...

Exploits0
securityvulns
securityvulnsadded 2002/04/01 12:0 a.m.38 views

More Office XP problems

Moderator: check the legal notice before submitting this to some database. Georgi Guninski security advisory 53, 2002 More Office XP problems Systems affected: Office XP Risk: High Date: 31 March 2002 Legal Notice: This Advisory is Copyright c 2002 Georgi Guninski. You may distribute it unmodifie...

Exploits0
securityvulns
securityvulnsadded 2000/07/21 12:0 a.m.66 views

Security Bulletin (MS00-045)

Microsoft Security Bulletin MS00-045 - -------------------------------------- Patch Available for "Persistent Mail-Browser Link" Vulnerability Originally Posted: July 20, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability affecting Microsoftr Outlook...

6.7AI score
Exploits0
securityvulns
securityvulnsadded 2000/07/21 12:0 a.m.62 views

Security Bulletin (MS00-046)

Microsoft Security Bulletin MS00-046 - -------------------------------------- Patch Available for "Cache Bypass" Vulnerability Originally Posted: July 20, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability in Microsoftr Outlookr and Outlook Express. The...

6.6AI score
Exploits0
CVE
CVEadded 2000/06/02 4:0 a.m.58 views

CVE-2000-0329

The CVE concerns a Microsoft ActiveX control vulnerability in the Active Setup Control that allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML email. Affected component is an ActiveX control; impact is remote code execution with partia...

5.1CVSS7AI score0.07321EPSS
Exploits0References1Affected Software4
Rows per page
Query Builder