4 matches found
CVE-2019-5966
Joruri Mail 2.1.4 and earlier does not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and alter/disclose the information via unspecified vectors...
CVE-2019-5966
Joruri Mail 2.1.4 and earlier does not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and alter/disclose the information via unspecified vectors...
CVE-2019-5966
CVE-2019-5966 affects Joruri Mail 2.1.4 and earlier. The issue is due to improper session management, enabling a remote attacker to impersonate an arbitrary user and alter/disclose information. The Red Hat/NVD entries confirm the impact; affected versions are 2.1.4 and earlier. Remediation advise...
JVN#58052567: Multiple vulnerabilities in Joruri Mail
Joruri Mail provided by SiteBridge Inc. contains multiple vulnerabilities listed below. Open Redirect CWE-601 - CVE-2019-5965 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N| Base Score: 4.7 CVSS v2| AV:N/AC:H/Au:N/C:N/I:P/A:N| Base Score: 2.6 Session...