Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2025/06/11 12:15 p.m.0 views

UBUNTU-CVE-2025-5986

A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's desktop or home directory without prompting, even if auto-saving is disabled. This behavior can be abused to fill the disk with garbage data e.g. using /dev/urandom on Linux or to...

6.5CVSS6.6AI score0.00583EPSS
Exploits0References7
RedhatCVE
RedhatCVEadded 2025/05/22 11:18 p.m.2 views

CVE-2022-36880

The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message...

6.1CVSS6.3AI score0.00526EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEVadded 2025/05/15 12:0 a.m.0 views

VulnCheck KEV: CVE-2024-11182

MDaemon Email Server contains a cross-site scripting XSS vulnerability that allows a remote attacker to load arbitrary JavaScript code via an HTML e-mail message...

6.1CVSS5.9AI score0.13521EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2022/12/15 4:21 p.m.3 views

Mozilla: Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration to block remote content

The Mozilla Foundation Security Advisory describes this flaw as: If a Thunderbird user quoted from an HTML email and the email contained either a video tag with the poster attribute or an object tag with a data attribute, a network request to the referenced remote URL was performed regardless of ...

8.1CVSS7.5AI score0.00502EPSS
Exploits0References5
The Hacker News
The Hacker Newsadded 2018/05/14 6:24 p.m.1 views

Here's How eFail Attack Works Against PGP and S/MIME Encrypted Emails

With a heavy heart, security researchers have early released the details of a set of vulnerabilities discovered in email clients for two widely used email encryption standards—PGP and S/MIME—after someone leaked their paper on the Internet, which was actually scheduled for tomorrow. PGP and S/MIM...

6.7AI score
Exploits0
CNVD
CNVDadded 2018/04/23 12:0 a.m.2 views

Apple macOS High Sierra Mail Man-in-the-Middle Attack Vulnerability

Apple macOS High Sierra is a specialized operating system developed by Apple Inc. for Mac computers.Mail is one of the email components. A security vulnerability exists in the handling of S/MIME HTML email messages in the Mail component in Apple macOS High Sierra versions prior to 10.13.4. An...

5.9CVSS6.2AI score0.00439EPSS
Exploits0References1
CNVD
CNVDadded 2015/05/14 12:0 a.m.2 views

Mozilla Thunderbird Text Processing Memory Misreference Vulnerability

Mozilla Thunderbird is a mail tool adapted from the mail widget of the Mozilla browser. A memory misreference vulnerability exists in Mozilla Thunderbird's handling of text when Vertical text is enabled, which allows remote attackers to exploit the vulnerability by submitting a special HTML email...

6.8CVSS7.3AI score0.01751EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2013/03/13 12:55 a.m.1 views

CVE-2013-0095

Outlook in Microsoft Office for Mac 2008 before 12.3.6 and Office for Mac 2011 before 14.3.2 allows remote attackers to trigger access to a remote URL and consequently confirm the rendering of an HTML e-mail message by including unspecified HTML5 elements and leveraging the installation of a WebK...

5CVSS5.6AI score0.29252EPSS
Exploits1References4
Rows per page
Query Builder