Lucene search
+L

11 matches found

OSV
OSV
added 2023/08/11 2:15 p.m.15 views

CVE-2020-24904

An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...

6.5CVSS7.1AI score
Exploits0References1
Prion
Prion
added 2023/08/11 2:15 p.m.15 views

Information disclosure

An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...

4.3CVSS6.5AI score0.00665EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/08/11 12:0 a.m.23 views

CVE-2020-24904

An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...

6.5AI score0.00665EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2023/08/11 12:0 a.m.41 views

CVE-2020-24904

An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...

6.5CVSS6.5AI score0.00665EPSS
Exploits1
CVE
CVE
added 2023/08/11 12:0 a.m.40 views

CVE-2020-24904

CVE-2020-24904 relates to GNOME Gmail 2.5.4 where an issue in the attach parameter allows remote attackers to glean sensitive information through crafted "mailto" links. The connected documents specify the affected software and the underlying cause (attach parameter mishandling in GNOME Gmail) wi...

6.5CVSS6.5AI score0.00665EPSS
Exploits1References1Affected Software1
SUSE CVE
SUSE CVE
added 2023/03/10 4:2 a.m.5 views

SUSE CVE-2023-27985

emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...

7.8CVSS7AI score0.01088EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/08/09 6:15 p.m.28 views

Mail.ru: Reflected XSS in https://e.mail.ru/

Reflected user-assisted XSS via crafted mailto "thread" parameter on "message has been sent" page...

6.3AI score
Exploits0
NVD
NVD
added 2008/03/11 11:44 p.m.30 views

CVE-2008-0110

Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...

9.3CVSS7.3AI score0.31934EPSS
Exploits1References9
Prion
Prion
added 2008/03/11 11:44 p.m.21 views

Code injection

Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...

9.3CVSS7.9AI score0.31934EPSS
Exploits1References9Affected Software1
CVE
CVE
added 2008/03/11 11:0 p.m.66 views

CVE-2008-0110

Summary of CVE-2008-0110 (MS Outlook mailto URI handling): A vulnerability in Microsoft Outlook (Office 2000 SP3, XP SP3, 2003 SP2/SP3, and 2007) arises from improper validation of mailto URIs passed from a web browser, enabling a remote attacker to execute arbitrary code and take complete contro...

9.3CVSS7.2AI score0.31934EPSS
Exploits1References9Affected Software1
Cvelist
Cvelist
added 2008/03/11 11:0 p.m.31 views

CVE-2008-0110

Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...

7.3AI score0.31934EPSS
Exploits1References9
Rows per page
Query Builder