CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

E-Mail containing malicious display-name information could trigger client-side script execution when using specific mobile devices. Attackers could perform malicious API requests or extract information from the users account. Please deploy the provided updates and patch releases. We now use safer...

6.5CVSS6.8AI score0.00447EPSS

Exploits0References1

RedhatCVE•added 2025/04/02 1:48 p.m.•9 views

CVE-2025-31592

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paolo Melchiorre Send E-mail send-e-mail allows Stored XSS.This issue affects Send E-mail: from n/a through = 1.3...

6.5CVSS7.2AI score0.00174EPSS

Exploits0References1

NVD•added 2025/03/31 1:15 p.m.•7 views

CVE-2025-31592

6.5CVSS0.00174EPSS

Exploits0References1

CVE•added 2025/03/31 12:55 p.m.•57 views

CVE-2025-31592

CVE-2025-31592 is a Stored XSS in the WordPress plugin Send E-mail (

6.5CVSS7.2AI score0.00174EPSS

Exploits0References1

CNVD•added 2024/05/16 12:0 a.m.•8 views

Cybozu Garoon Information Disclosure Vulnerability (CNVD-2024-29673)

Cybozu Garoon is a portal-type OA office system from Cybozu Japan. The system provides portal, e-mail, bookmarks, scheduling, bulletin board, document management, and other functions. An information disclosure vulnerability exists in Cybozu Garoon. The vulnerability stems from insufficient...

6.5CVSS6.1AI score0.00482EPSS

Exploits0References1

NVD•added 2021/08/18 6:15 a.m.•9 views

CVE-2021-20757

Operational restrictions bypass vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to alter the data of Portal without the appropriate privilege...

4.3CVSS0.00193EPSS

Exploits0References2

OSV•added 2021/08/18 6:15 a.m.•1 views

CVE-2021-20762

Improper input validation vulnerability in E-mail of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated to alter the data of E-mail without the appropriate privilege...

4.3CVSS5.9AI score

Exploits0References2

Prion•added 2010/09/15 7:0 p.m.•18 views

Heap overflow

Heap-based buffer overflow in Microsoft Outlook 2002 SP3, 2003 SP3, and 2007 SP2, when Online Mode for an Exchange Server is enabled, allows remote attackers to execute arbitrary code via a crafted e-mail message, aka "Heap Based Buffer Overflow in Outlook Vulnerability."...

9.3CVSS8.5AI score0.28373EPSS

Exploits0References2Affected Software1

Debian CVE•added 2006/02/24 10:0 p.m.•20 views

CVE-2006-0884

The WYSIWYG rendering engine "rich mail" editor in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which i...

9.3CVSS6.1AI score0.35997EPSS

Exploits1

Packet Storm•added 2003/03/17 12:0 a.m.•27 views

outblaze.txt

========================================== INetCop Security Advisory 2003-0x82-014.b ========================================== Title: ++Danger++ Outblaze Web based e-mail that is exposed in very dangerous state !!! 0x01. Description Hackermail.com Outblaze Web based e-mail is mail service that I...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by