12 matches found
Apache Pony Mail 环境问题漏洞
Apache Pony Mail is a plugin from the Apache Foundation in the United States that includes features for email archiving, viewing, and interaction. Apache Pony Mail has an environmental issue vulnerability, which stems from inconsistent interpretation of HTTP requests, potentially allowing...
EUVD-2017-14738
Malware in sbrugna...
EUVD-2016-5449
Malware in sbrugna...
Authorization
The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without disclosing the conten...
CVE-2017-5658
The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without disclosing the conten...
CVE-2017-5658
The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without disclosing the conten...
CVE-2017-5658
The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or text bodies, though without disclosing the conten...
CVE-2017-5658
The CVE-2017-5658 issue affects Apache Pony Mail (versions 0.7–0.9). The statistics generator could disclose timing information about messages (subjects/text bodies) on private lists because it returned timestamp data without proper authorization checks. The core root cause is improper authorizat...
Apache Pony Mail Security Bypass Vulnerability
Apache Pony Mail is a plugin with mail archiving, viewing and interaction features. A security vulnerability exists in Apache Pony Mail that allows an attacker to submit special requests to bypass authentication...
Authentication flaw
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication...
CVE-2016-4460
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication...
CVE-2016-4460
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication...