CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Open Bug Bounty ID: OBB-579564 Description| Value ---|--- Affected Website:| china-window.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Japan Vulnerability Notes•added 2016/05/27 4:54 a.m.•1 views

WebARENA formmail vulnerable to cross-site scripting

Overview formmail used for the WebARENA Service provided by NTT PC Communications Incorporated contains a cross-site scripting vulnerability CWE-79. OHTA, Yoshinori of Business Architects Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

6.1CVSS6AI score0.00357EPSS

Exploits0References7

NVD•added 2004/12/31 5:0 a.m.•6 views

CVE-2004-1431

FormMail.php 5.0, and possibly other versions, allows remote attackers to read arbitrary files via a full pathname in the arfile auto-reply parameter...

5CVSS6.8AI score0.00477EPSS

Exploits1References4

securityvulns•added 2004/02/09 12:0 a.m.•30 views

formmail (PHP) Upload file using CSS

Informations : °°°°°°°°°°°°°° Website : http://www.dtheatre.com/scripts/ Version : all Problem : Upload file PHP Code/Location : °°°°°°°°°°°°°°°°°°° formmail.php : ------------------------------------------------------------------ function checkreferer$referers if count$referers $found = false;...

0.3AI score

Exploits0

NVD•added 2002/12/31 5:0 a.m.•12 views

CVE-2002-1771

Matt Wright FormMail 1.9 and earlier allows remote attackers to send spam or anonymous e-mail by injecting a newline character followed by CC:, BCC:, or additional TO: fields in the email and realname CGI variables...

5CVSS6.7AI score0.00392EPSS

Exploits0References4

NVD•added 2002/12/31 5:0 a.m.•10 views

CVE-2002-2109

Matt Wright FormMail 1.9 and earlier allows remote attackers to bypass the HTTPREFERER check and conduct unauthorized activities via 1 a blank referer, 2 a spoofed referer with a trusted domain/URL after the beginning of the referer, or 3 a spoofed referer with a trusted domain/URL in the beginni...

7.5CVSS6.7AI score0.00521EPSS

Exploits1References4

securityvulns•added 2002/01/25 12:0 a.m.•45 views

Маленькая дырка в formmail

Атакующий может просмотреть переменные окружения на сервере. Кроме того, возможна безнаказанная рассылка спама...

0.3AI score

Exploits0References3

NVD•added 2001/08/22 4:0 a.m.•13 views

CVE-2001-0357

FormMail.pl in FormMail 1.6 and earlier allows a remote attacker to send anonymous email spam by modifying the recipient and message parameters...

7.5CVSS6.5AI score0.00636EPSS

Exploits0References2