3 matches found
CVE-2025-32354
In Zimbra Collaboration ZCS 9.0 through 10.1, a Cross-Site Request Forgery CSRF vulnerability exists in the GraphQL endpoint /service/extension/graphql of Zimbra webmail due to a lack of CSRF token validation. This allows attackers to perform unauthorized GraphQL operations, such as modifying...
The vulnerability in the Webmail of the FortiMail email protection system, which allows a hacker to gain unauthorized access to protected information.
The vulnerability of FortiMail’s webmail system relates to deficiencies in the checking of path names to the restricted access catalog. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information through specially crafted web requests...
OpenJDK kerberos vulnerability (6958060)
Unspecified vulnerability in the Oracle Communications Messaging Server Sun Java System Messaging Server component in Oracle Sun Products Suite 7.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Webmail. NOTE: the previous information was obtained...