Lucene search
K

4 matches found

Circl
Circl
added 2014/01/14 12:0 a.m.15 views

CVE-2013-6017

creationtimestamp| type| source ---|---|--- 2014-01-14 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39015...

4.3CVSS6.9AI score0.04373EPSS
Exploits0References1
NVD
NVD
added 2014/01/12 6:34 p.m.16 views

CVE-2013-6017

Cross-site scripting XSS vulnerability in Atmail Webmail Server before 7.2 allows remote attackers to inject arbitrary web script or HTML via the body of an e-mail message, as demonstrated by the SRC attribute of an IFRAME element...

4.3CVSS5.7AI score0.04373EPSS
Exploits0References4
CVE
CVE
added 2014/01/12 3:0 p.m.60 views

CVE-2013-6017

Atmail Webmail Server prior to 7.2 is vulnerable to stored cross-site scripting (XSS) via the body of an e-mail message, demonstrated by an IFRAME SRC attribute. The flaw exists in Atmail Webmail Server versions 6.x/7.x before 7.2.0 and is caused by input validation issues in email handling. Succ...

4.3CVSS5.8AI score0.04373EPSS
Exploits0References4Affected Software1
CERT
CERT
added 2014/01/10 12:0 a.m.34 views

Atmail Webmail Server version 7.1.3 contains cross-site scripting (XSS) and cross-site request forgery (CSRF) vulnerabilities

Overview Atmail Webmail Server version 7.1.3 and possibly earlier versions contain stored cross-site scripting XSS CWE-79 and cross-site request forgery CSRF CWE-352 vulnerabilities. Description CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' -...

6.8CVSS6.1AI score0.04373EPSS
Exploits0References3
Rows per page
Query Builder