Lucene search
K

14 matches found

NVD
NVD
added 2025/10/31 2:16 p.m.3 views

CVE-2025-12460

An XSS issue was discovered in Afterlogic Aurora webmail version 9.8.3 and below. An attacker can send a specially crafted HTML e-mail message with JavaScript in an img HTML tag. This could allow a remote attacker to load arbitrary JavaScript code in the context of a webmail user's browser window...

5.3CVSS0.00405EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-3212

Malware in sbrugna...

7.5CVSS6.4AI score0.01673EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-1438

Malware in sbrugna...

9.8CVSS9.5AI score0.01146EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-1154

Malware in sbrugna...

2.1CVSS6.4AI score0.00231EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-11005

Malicious code in bioql PyPI...

6.9CVSS6.4AI score0.00398EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 a.m.9 views

CVE-2019-13612

MDaemon Email Server 19 through 20.0.1 skips SpamAssassin checks by default for e-mail messages larger than 2 MB and limits checks to 10 MB even with special configuration, which is arguably inconsistent with currently popular message sizes. This might interfere with risk management for malicious...

7.5CVSS6.9AI score0.01321EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.6 views

PT-2024-19812 · Tuta · Tuta

Name of the Vulnerable Software and Affected Versions: Tuta versions prior to 119.10 Description: The issue concerns the loading of external content in emails. In the default setting, external resources should not be loaded without user confirmation. However, certain embedded images can be loaded...

5.3CVSS5.1AI score0.00474EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/10/16 12:0 a.m.3 views

PT-2023-32094 · Openssl +2 · Openssl +2

Name of the Vulnerable Software and Affected Versions: OTRS versions 7.0.X through 7.0.46 OTRS versions 8.0.X through 8.0.36 OTRS Community Edition versions 6.0.X through 6.0.34 Description: The functions to fetch e-mail via POP3 or IMAP as well as sending e-mail via SMTP use OpenSSL for static S...

9.8CVSS4.9AI score0.01273EPSS
Exploits0References31
Vulnrichment
Vulnrichment
added 2022/09/07 7:45 p.m.9 views

CVE-2022-36073 RubyGems allows creation of users with arbitrary unverified emails

RubyGems.org is the Ruby community gem host. A bug in password & email change confirmation code allowed an attacker to change their RubyGems.org account's email to an unowned email address. Having access to an account whose email has been changed could enable an attacker to save API keys for that...

8.3CVSS8.8AI score0.00814EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/11/17 12:0 a.m.37 views

GLSA-200411-25 : SquirrelMail: Encoded text XSS vulnerability

The remote host is affected by the vulnerability described in GLSA-200411-25 SquirrelMail: Encoded text XSS vulnerability SquirrelMail fails to properly sanitize certain strings when decoding specially crafted headers. Impact : By enticing a user to read a specially crafted e-mail, an attacker ca...

6.8CVSS5.8AI score0.02818EPSS
Exploits0References3
securityvulns
securityvulns
added 2003/05/22 12:0 a.m.30 views

Restricted Zone: the OUTLOOK EXPRESS

Tuesday, 20 May, 2003 Silent delivery and installation of an executable on a target computer. No client input other than opening an email or newsgroup post. This can be achieved with the default setting of Outlook Express: RESTRICTED ZONE. Technically the following never worked, cannot work,...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2003/03/20 12:0 a.m.37 views

CORE-2003-03-04-01: Multiple vulnerabilities in Ximian 's Evolution Mail User Agent

Core Security Technologies Advisory http://www.coresecurity.com Multiple vulnerabilities in Ximian's Evolution Mail User Agent Date Published: 2003-03-19 Last Update: 2003-03-19 Advisory ID: CORE-20030304-01 Bugtraq IDs: 7117, 7118, 7119 CVE CAN: CAN-2003-0128 CAN-2003-0129 CAN-2003-0130 Title:...

5CVSS7.1AI score0.11743EPSS
Exploits3
Exploit DB
Exploit DB
added 2002/07/20 12:0 a.m.22 views

Microsoft Outlook Express 5/6 - Spoofable File Extensions

source: https://www.securityfocus.com/bid/5277/info It is possible for a malicious user, sending email via a mail agent capable of manipulating the MIME headers, to spoof file extensions for users of Outlook Express. For example, an .exe file can be made to look like a .txt or other seemingly...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/08/15 12:0 a.m.81 views

Ошибка между imapd И mail.local

Hello, Надеюсь, что хотя бы из чувства патриотизма может быть еще кто-нибудь в дальнейшем решится писать в этот список рассылки до или хотя бы одновременно публикации в Bugtraq : Ошибка несерьезная, но достаточно интересная. Дело в том, что в данном случае ни одна из программ не содержит явной...

7AI score
Exploits0
Rows per page
Query Builder