11 matches found
CVE-2020-24904
An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...
Information disclosure
An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...
CVE-2020-24904
An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...
CVE-2020-24904
An issue was discovered in attach parameter in GNOME Gmail version 2.5.4, allows remote attackers to gain sensitive information via crafted "mailto" link...
CVE-2020-24904
CVE-2020-24904 relates to GNOME Gmail 2.5.4 where an issue in the attach parameter allows remote attackers to glean sensitive information through crafted "mailto" links. The connected documents specify the affected software and the underlying cause (attach parameter mishandling in GNOME Gmail) wi...
SUSE CVE-2023-27985
emacsclient-mail.desktop in Emacs 28.1 through 28.2 is vulnerable to shell command injections through a crafted mailto: URI. This is related to lack of compliance with the Desktop Entry Specification. It is fixed in 29.0.90...
Mail.ru: Reflected XSS in https://e.mail.ru/
Reflected user-assisted XSS via crafted mailto "thread" parameter on "message has been sent" page...
CVE-2008-0110
Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...
Code injection
Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...
CVE-2008-0110
Summary of CVE-2008-0110 (MS Outlook mailto URI handling): A vulnerability in Microsoft Outlook (Office 2000 SP3, XP SP3, 2003 SP2/SP3, and 2007) arises from improper validation of mailto URIs passed from a web browser, enabling a remote attacker to execute arbitrary code and take complete contro...
CVE-2008-0110
Unspecified vulnerability in Microsoft Outlook in Office 2000 SP3, XP SP3, 2003 SP2 and Sp3, and Office System allows user-assisted remote attackers to execute arbitrary code via a crafted mailto URI...