5 matches found
Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization via the calendar portlet. An attacker can alter the content of emails sent to other users by leveraging authenticated access, potentially enabling the distribution of deceptive messages within the same organization...
New Relic: Emails and alert policies can be altered by malicious users.
Recreate Steps 1 Create Two Accounts 2 In separate browsers Firefox and Chrome log into each account and go to the edit page a https://rpm.newrelic.com/users//edit 3 Check one of the email or alert boxes and click save. Gather the post. a Should be similar to this:...
Debian DSA-2322-1 : bugzilla - several vulnerabilities
Several vulnerabilities were discovered in Bugzilla, a web-based bug tracking system. - CVE-2010-4572 By inserting particular strings into certain URLs, it was possible to inject both headers and content to any browser. - CVE-2010-4567, CVE-2011-0048 Bugzilla has a 'URL' field that can contain...
CVE-2007-1803
Unspecified vulnerability in MailDwarf 3.01 and earlier allows remote attackers to send e-mail to addresses different from the configured addresses...
Security Flaw with Digital signatures in Microsoft Outlook
On 10/21/2004 the following vulnerability was reported to Microsoft: Security Flaw with Digital signatures in Microsoft Outlook - Emails in Microsoft Outlook digitally signed with S/MIME using either a commercial personal certificate like Verisign or using a certificate issued by MS Certificate...