CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

CVE-2025-66955

Local File Inclusion in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote authenticated users to access files on the host via "path" parameter in the downloadAttachment and downloadAttachmentFromPath API calls...

CVE-2025-66956

Insecure Access Control in Contact Plan, E-Mail, SMS and Fax components in Asseco SEE Live 2.0 allows remote attackers to access and execute attachments via a computable URL...

CouchAuth 安全漏洞

CouchAuth is an authentication API developed by Perfood. Version 0.26.0 of CouchAuth contains a security vulnerability. This vulnerability stems from a potential host header injection in the email component, which could lead to the acquisition of reset tokens and account takeover attacks...

CVE-2025-67823

CVE-2025-67823 affects Mitel MiContact Center Business up to version 10.2.0.10 and Mitel CX up to 1.1.0.1. The vulnerability is in the Multimedia Email component and stems from insufficient input validation, enabling an unauthenticated attacker to perform a Cross-Site Scripting (XSS) attack. A su...

CVE-2025-67823

A vulnerability in the Multimedia Email component of Mitel MiContact Center Business through 10.2.0.10 and Mitel CX through 1.1.0.1 could allow an unauthenticated attacker to conduct a Cross-Site Scripting XSS attack due to insufficient input validation. A successful exploit requires user...

EUVD-2019-12418

Malware in sbrugna...

CVE-2019-2980

Vulnerability in the Oracle FLEXCUBE Direct Banking product of Oracle Financial Services Applications component: eMail. Supported versions that are affected are 12.0.2 and 12.0.3. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...

PT-2020-16799 · Mozilla +4 · Thunderbird +4

Name of the Vulnerable Software and Affected Versions: xdg-utils versions 1.1.0-rc1 and newer Description: A flaw was found in the xdg-email component. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could...

Unspecified Vulnerability in Google Android (CNVD-2021-30156)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA in the U.S. System is one of the system components.VPN is one of the VPN Virtual Private Network components. VPN is a VPN Virtual Private Network component, Email is an email component, and...

Google Android Denial of Service Vulnerability (CNVD-2021-30160)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA.Framework is an Android framework component.System is a system component.Broadcom Bluetooth is a Bluetooth component.Wi-Fi is a wireless Internet component.USB driver is a Universal Serial Bus USB...

Unspecified Vulnerability in Google Android (CNVD-2021-30161)

Android is a Linux-based open source operating system from Google and the Open Handset Alliance OHA.Framework is an Android framework component.System is a system component.Broadcom Bluetooth is a Bluetooth component.Wi-Fi is a wireless Internet component.USB driver is a Universal Serial Bus USB...

CVE-2019-2779

Vulnerability in the Siebel Core - Common Components component of Oracle Siebel CRM subcomponent: Email. Supported versions that are affected are 19.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via HTTP to compromise Siebel Core - Common...