Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2004-2491

Malware in sbrugna...

10CVSS6.4AI score0.01748EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2005/04/14 12:0 a.m.46 views

IlohaMail read_message.php Attachment Multiple Field XSS

Based on its version number, the installation of IlohaMail on the remote host does not properly sanitize attachment file names, MIME media types, and HTML / text email messages. An attacker can exploit these vulnerabilities by sending a specially crafted message to a user which, when read using a...

4.3CVSS6AI score0.01404EPSS
Exploits0References2
NVD
NVD
added 2004/12/31 5:0 a.m.17 views

CVE-2004-2500

Unknown vulnerability in IlohaMail before 0.8.14-rc1 has unknown impact and attack vectors...

10CVSS6.5AI score0.01748EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2004/12/11 12:0 a.m.30 views

IlohaMail < 0.8.14-RC1 Unspecified Vulnerability

Binary data 2451.prm...

10CVSS7.3AI score0.01748EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/12/11 12:0 a.m.24 views

IlohaMail < 0.8.14RC1 Unspecified Vulnerability

The remote host is running at least one instance of IlohaMail version 0.8.13 or earlier. Such versions are reportedly affected by an unspecified vulnerability. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid15935;...

10CVSS5.5AI score0.01748EPSS
Exploits0References2
securityvulns
securityvulns
added 2004/12/11 12:0 a.m.48 views

[SA13413] IlohaMail Unspecified Vulnerability

TITLE: IlohaMail Unspecified Vulnerability SECUNIA ADVISORY ID: SA13413 VERIFY ADVISORY: http://secunia.com/advisories/13413/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: IlohaMail 0.8.x http://secunia.com/product/1039/ DESCRIPTION: A vulnerability with an unknown...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/02 12:0 a.m.23 views

IlohaMail Attachment Arbitrary File Create/Overwrite

The target is running at least one instance of IlohaMail version 0.7.9-RC2 or earlier. Such versions do not properly check the upload path for file attachments, which could allow an attacker to place a file on the target in a location writable by the web user if the file-based backend is in use...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/02 12:0 a.m.14 views

IlohaMail index.php session Parameter Arbitrary File Access

The target is running at least one instance of IlohaMail version 0.7.11 or earlier. Such versions contain a flaw in the processing of the session variable that allows an unauthenticated attacker to retrieve arbitrary files available to the web user, provided the filesystem backend is in use...

5.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2004/09/02 12:0 a.m.541 views

IlohaMail Email Header XSS

The remote host is running at least one instance of IlohaMail version 0.8.12 or earlier. Such versions do not properly sanitize message headers, leaving users vulnerable to XSS attacks. For example, a remote attacker could inject JavaScript code that steals the user's session cookie and thereby...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/02 12:0 a.m.17 views

IlohaMail index.php init_lang Parameter Arbitrary File Access

The target is running at least one instance of IlohaMail version 0.7.10 or earlier. Such versions contain a flaw in the processing of the language variable that allows an unauthenticated attacker to retrieve arbitrary files available to the web user. %NASLMINLEVEL 70300 This script was written by...

5.7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2004/09/02 12:0 a.m.18 views

IlohaMail Unspecified Database Password Disclosure Weakness

The target is running at least one instance of IlohaMail version 0.6 or earlier. Such versions suffer from a potential password disclosure problem when databasae information is not saved in the session table. Nessus has determined the vulnerability exists on the target simply by looking at the...

5.5AI score
Exploits0References1
Rows per page
Query Builder