Lucene search
K

219 matches found

Prion
Prion
added 2023/07/27 7:15 p.m.11 views

Design/Logic Flaw

Atmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field...

5.8CVSS6AI score0.00388EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/27 12:0 a.m.14 views

CVE-2022-31200

Atmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field...

6AI score0.00388EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/27 12:0 a.m.20 views

CVE-2022-31200

Atmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field...

6.1AI score0.00388EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/07/27 12:0 a.m.5 views

Atmail 跨站脚本漏洞

Atmail is an email hosting service from Atmail. It is used to ensure that customer email platforms are secure, stable, scalable and private. A security vulnerability exists in Atmail version 5.62, which stems from the presence of a cross-site scripting XSS vulnerability...

6.1CVSS5.9AI score0.00388EPSS
Exploits0References3
CVE
CVE
added 2023/07/27 12:0 a.m.51 views

CVE-2022-31200

The CVE-2022-31200 issue affects Atmail 5.62 and is described as a cross-site scripting (XSS) vulnerability exploitable via the mail/parse.php file with crafted URL parameters (html/$this->Language/help/filexp.html&FirstLoad=1&HelpFile=file.html). Multiple connected sources corroborate a vulne...

6.1CVSS5.9AI score0.00388EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2022/05/19 12:0 a.m.15 views

Atmail <= 6.5.0 XSS Vulnerability

Atmail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:atmail:atmail"; if...

6.1CVSS6.1AI score0.04212EPSS
Exploits0References1
CNVD
CNVD
added 2022/05/18 12:0 a.m.16 views

Atmail Cross-Site Scripting Vulnerability (CNVD-2022-66695)

Atmail is an email hosting service from Atmail. Atmail version 6.5.0 contains a cross-site scripting vulnerability that originates from an incorrect parameter in index.php/admin/index/ and can be exploited to execute JavaScript code...

4.3CVSS3.3AI score0.04212EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/05/16 2:15 p.m.2 views

CVE-2022-30776

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

6.1CVSS5.8AI score0.04212EPSS
Exploits0References5
OSV
OSV
added 2022/05/16 2:15 p.m.5 views

CVE-2022-30776

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

6.1CVSS5.8AI score0.04212EPSS
Exploits0References2
NVD
NVD
added 2022/05/16 2:15 p.m.23 views

CVE-2022-30776

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

6.1CVSS0.04212EPSS
Exploits0References2
Prion
Prion
added 2022/05/16 2:15 p.m.18 views

Cross site scripting

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

4.3CVSS5.9AI score0.04212EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/05/16 1:35 p.m.21 views

CVE-2022-30776

atmail 6.5.0 allows XSS via the index.php/admin/index/ error parameter...

6.1AI score0.04212EPSS
Exploits0References2
CVE
CVE
added 2022/05/16 1:35 p.m.93 views

CVE-2022-30776

Affected software: Atmail 6.5.0. Vulnerability: Cross-site scripting (XSS) via the index.php/admin/index/ 'error' parameter. Root cause: Improper handling/input validation of the error parameter leads to script execution in the victim’s browser. Impact (as described): attackers could execute mali...

6.1CVSS5.9AI score0.04212EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.4 views

Atmail 跨站脚本漏洞

Atmail is an email hosting service from Atmail. Atmail version 6.5.0 contains a cross-site scripting vulnerability that originates from an incorrect parameter in index.php/admin/index/ and can be exploited to execute JavaScript code...

6.1CVSS6AI score0.04212EPSS
Exploits0References4
CNVD
CNVD
added 2021/11/17 12:0 a.m.20 views

AtMail Cross-Site Scripting Vulnerability (CNVD-2021-93369)

AtMail is an open source WebMail client from Atmail Australia, which provides Webmail interface, address book management, calendar and other features, and supports IMAP, video mail, etc. A cross-site scripting vulnerability exists in the WebAdmin control panel of AtMail version 6.5.0. An attacker...

6.1CVSS3.3AI score0.02422EPSS
Exploits0References1
NVD
NVD
added 2021/11/15 3:15 p.m.16 views

CVE-2021-43574

WebAdmin Control Panel in Atmail 6.5.0 a version released in 2012 allows XSS via the format parameter to the default URI. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

6.1CVSS0.02422EPSS
Exploits0References2
OSV
OSV
added 2021/11/15 3:15 p.m.5 views

CVE-2021-43574

WebAdmin Control Panel in Atmail 6.5.0 a version released in 2012 allows XSS via the format parameter to the default URI. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

6.1CVSS5.8AI score0.02422EPSS
Exploits0References2
Prion
Prion
added 2021/11/15 3:15 p.m.19 views

Cross site scripting

UNSUPPORTED WHEN ASSIGNED WebAdmin Control Panel in Atmail 6.5.0 a version released in 2012 allows XSS via the format parameter to the default URI. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

4.3CVSS5.9AI score0.02422EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/11/15 2:18 p.m.19 views

CVE-2021-43574

WebAdmin Control Panel in Atmail 6.5.0 a version released in 2012 allows XSS via the format parameter to the default URI. NOTE: This vulnerability only affects products that are no longer supported by the maintainer...

6.1AI score0.02422EPSS
Exploits0References2
CVE
CVE
added 2021/11/15 2:18 p.m.63 views

CVE-2021-43574

CVE-2021-43574 affects Atmail 6.5.0 (WebAdmin/Control Panel). The vulnerability is a cross-site scripting (XSS) flaw exposed via the format parameter to the default URI, allowing injected script/HTML to run in the victim’s browser. Documented across multiple sources (NVD, Nuclei template, CNVD/CN...

6.1CVSS5.9AI score0.02422EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder