GHSA-RFQ9-4WCM-64GH ImapEngine affected by command injection via the ID command parameters

Versions of the package directorytree/imapengine before 1.22.3 are vulnerable to Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' via the id function in ImapConnection.php due to improperly escaping user input before including it in IMAP ID commands...

EUVD-2003-1070

Malware in sbrugna...

The vulnerability of the FUDforum internet forum, related to the lack of measures taken to protect the website structure, allows a perpetrator to execute arbitrary code.

The vulnerability of the FUDforum internet forum is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor, operating remotely, to inject arbitrary code during the administrator’s email reading process. This code can then...

CVE-2016-1193

Cybozu Garoon 3.7 through 4.2 allows remote attackers to obtain sensitive email-reading information via unspecified vectors...

CVE-2016-1193

CVE-2016-1193 affects Cybozu Garoon 3.7–4.2. A vulnerability in the mail functionality allows information disclosure: by sending a specially crafted email, a remote attacker can cause a user to read sensitive email data. The connected sources specify an information-disclosure vulnerability via th...