Lucene search
K

81 matches found

Vulnrichment
Vulnrichment
added 2024/02/07 12:0 a.m.15 views

CVE-2024-24131

SuperWebMailer v9.31.0.01799 was discovered to contain a reflected cross-site scripting XSS vulenrability via the component api.php...

6.5AI score0.00924EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/02/07 12:0 a.m.16 views

CVE-2024-24131

SuperWebMailer v9.31.0.01799 was discovered to contain a reflected cross-site scripting XSS vulenrability via the component api.php...

6.2AI score0.00924EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/02/07 12:0 a.m.6 views

PT-2024-20285 · Unknown · Superwebmailer

Name of the Vulnerable Software and Affected Versions: SuperWebMailer version 9.31.0.01799 Description: The issue is a reflected cross-site scripting XSS problem. It occurs via the "api.php" component. Cross-site scripting XSS is a type of security vulnerability that allows an attacker to inject...

6.1CVSS6.1AI score0.00924EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/02/07 12:0 a.m.5 views

Superwebmailer Cross-Site Scripting Vulnerability

Superwebmailer is a web-based PHP newsletter software for newsletter recipient management, sending HTML newsletters, birthday emails. A cross-site scripting vulnerability exists in Superwebmailer version v9.31.0.01799, which stems from a cross-site scripting vulnerability in the component api.php...

6.1CVSS6.1AI score0.00924EPSS
Exploits1References2
CVE
CVE
added 2024/02/07 12:0 a.m.97 views

CVE-2024-24131

CVE-2024-24131 affects SuperWebMailer, specifically version 9.31.0.01799, with a reflected cross-site scripting (XSS) vulnerability in the api.php component. The vulnerability allows unauthenticated attackers to execute arbitrary JavaScript in a victim’s browser, potentially enabling cookie or se...

6.1CVSS6AI score0.00924EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2023/10/21 1:15 a.m.2 views

CVE-2023-38194

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows keepalive.php XSS via a GET parameter...

6.1CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2023/10/21 1:15 a.m.18 views

CVE-2023-38193

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Remote Code Execution via a crafted sendmail command line...

8.8CVSS8.9AI score0.01286EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/21 1:15 a.m.7 views

CVE-2023-38194

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows keepalive.php XSS via a GET parameter...

6.1CVSS6.3AI score0.0114EPSS
Exploits1References4
OSV
OSV
added 2023/10/21 1:15 a.m.4 views

CVE-2023-38193

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Remote Code Execution via a crafted sendmail command line...

8.8CVSS5.9AI score0.01286EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/21 1:15 a.m.4 views

CVE-2023-38193

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Remote Code Execution via a crafted sendmail command line...

8.8CVSS7.5AI score0.01286EPSS
Exploits1References3
NVD
NVD
added 2023/10/21 1:15 a.m.16 views

CVE-2023-38194

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows keepalive.php XSS via a GET parameter...

6.1CVSS5.9AI score0.0114EPSS
Exploits1References2
NVD
NVD
added 2023/10/21 1:15 a.m.14 views

CVE-2023-38192

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows superadmincreate.php XSS via crafted incorrect passwords...

6.1CVSS6AI score0.01116EPSS
Exploits1References2
OSV
OSV
added 2023/10/21 1:15 a.m.4 views

CVE-2023-38192

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows superadmincreate.php XSS via crafted incorrect passwords...

6.1CVSS5.8AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2023/10/21 1:15 a.m.6 views

CVE-2023-38192

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows superadmincreate.php XSS via crafted incorrect passwords...

6.1CVSS6.3AI score0.01116EPSS
Exploits1References4
NVD
NVD
added 2023/10/21 1:15 a.m.16 views

CVE-2023-38190

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Export SQL Injection via the size parameter...

8.8CVSS9.1AI score0.00665EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/10/21 1:15 a.m.5 views

CVE-2023-38190

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Export SQL Injection via the size parameter...

8.8CVSS7.5AI score0.00665EPSS
Exploits1References3
OSV
OSV
added 2023/10/21 1:15 a.m.4 views

CVE-2023-38190

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Export SQL Injection via the size parameter...

8.8CVSS5.8AI score0.00665EPSS
Exploits1References2
Prion
Prion
added 2023/10/21 1:15 a.m.16 views

Sql injection

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Export SQL Injection via the size parameter...

6.5CVSS9.1AI score0.00665EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/21 1:15 a.m.14 views

Remote code execution

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows Remote Code Execution via a crafted sendmail command line...

6.5CVSS8.8AI score0.01286EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/21 1:15 a.m.15 views

Design/Logic Flaw

An issue was discovered in SuperWebMailer 9.00.0.01710. It allows keepalive.php XSS via a GET parameter...

5.8CVSS5.9AI score0.0114EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder