Lucene search
K

4 matches found

EUVD
EUVD
added yesterday6 views

EUVD-2026-40279

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Apache ActiveMQ, Apache ActiveMQ Web Console. The browse page in the web console renders a message Id directly without sanitization. This allows an authenticated producer to send a message with a J...

6.1CVSS5.7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2009/07/02 4:55 p.m.3 views

fetchmail/mutt/evolution/...: APOP password disclosure vulnerability

The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle MITM attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including 1 Thunderbird 1.x before 1.5.0.12 and...

2.6CVSS5.9AI score0.02423EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2007/05/31 1:50 a.m.5 views

fetchmail/mutt/evolution/...: APOP password disclosure vulnerability

The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle MITM attacks that use crafted message IDs and MD5 collisions. NOTE: this design-level issue potentially affects all products that use APOP, including 1 Thunderbird 1.x before 1.5.0.12 and...

2.6CVSS5.9AI score0.02423EPSS
Exploits1References4
FreeBSD
FreeBSD
added 2007/04/02 12:0 a.m.32 views

claws-mail -- APOP vulnerability

CVE reports: The APOP protocol allows remote attackers to guess the first 3 characters of a password via man-in-the-middle MITM attacks that use crafted message IDs and MD5 collisions...

2.6CVSS6.6AI score0.02423EPSS
Exploits1References1
Rows per page
Query Builder