Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 11:37 a.m.5 views

CVE-2025-20621

Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker to cause the webapp to crash via creating and sending such a post to a channel...

7.5CVSS6.3AI score0.00442EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 7:15 p.m.11 views

CVE-2025-20621

Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker to cause the webapp to crash via creating and sending such a post to a channel...

7.5CVSS0.00442EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.3 views

Multiple email clients vulnerable in handling an attachement inapropriately

Overview Some email clients contain a vulnerability which may crash themselves as they do not properly handle an attached file with an particular file name. Impact Actual impact could differ depending on the email clients though, email clients may crash when hadling an attached file with a...

5CVSS6.7AI score0.01814EPSS
Exploits0References8
NVD
NVD
added 2004/12/31 5:0 a.m.20 views

CVE-2004-2704

Hastymail 1.0.1 and earlier stable and 1.1 and earlier development does not send the "attachment" parameter in the Content-Disposition field for attachments, which causes the attachment to be rendered inline by Internet Explorer when the victim clicks the download link, which facilitates cross-si...

4.3CVSS5.8AI score0.0473EPSS
Exploits0References7
Rows per page
Query Builder