PT-2026-34027

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.214, the undo-send route GET /conversation/undo-reply/thread id checks only whether the current user can view the parent conversation. It does not verify that the current user created the reply being undone. In a...

Gmail’s New Encrypted Messages Feature Opens a Door for Scams

Google is rolling out an end-to-end encrypted email feature for business customers, but it could spawn phishing attacks, particularly in non-Gmail inboxes...

Microsoft Teams Flaw Sends Malware to Employees’ Inboxes

By Deeba Ahmed During their test, researchers from JUMPSEC managed to trick Microsoft Teams security mechanism into sending malware to the… This is a post from HackRead.com Read the original post: Microsoft Teams Flaw Sends Malware to Employees Inboxes...

German and South Korean Agencies Warn of Kimsuky's Expanding Cyber Attack Tactics

German and South Korean government agencies have warned about cyber attacks mounted by a threat actor tracked as Kimsuky using rogue browser extensions to steal users' Gmail inboxes. The joint advisory comes from Germany's domestic intelligence apparatus, the Federal Office for the Protection of...

Yandex Employee Caught Selling Access to Users' Email Inboxes

Russian Dutch-domiciled search engine, ride-hailing and email service provider Yandex on Friday disclosed a data breach that compromised 4,887 email accounts of its users. The company blamed the incident on an unnamed employee who had been providing unauthorized access to the users' mailboxes for...

Uebimiau Webmail 3.2.0-2.0 - Email Disclosure

No description provided by source. Exploit Title: Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Date: 09 March 2010 Author: Z3r0c0re, R4vax Software Link: http://www.uebimiau.org/download.php Version: 3.2.0-2.0 Tested on: php Code : Uebimiau Webmail Email Disclosure D0rk: Uebimiau Webmail...

Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Vulnerability

Exploit for unknown platform in category web applications ============================================================ Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Vulnerability ============================================================ Exploit Title: Uebimiau Webmail v3.2.0-2.0 | Email...

Uebimiau Webmail 3.2.0-2.0 - Email Disclosure

Uebimiau Webmail 3.2.0-2.0 - Email Disclosure Exploit Title: Uebimiau Webmail v3.2.0-2.0 | Email Disclosure Date: 09 March 2010 Author: Z3r0c0re, R4vax Software Link: http://www.uebimiau.org/download.php Version: 3.2.0-2.0 Tested on: php Code : Uebimiau Webmail Email Disclosure D0rk: "Uebimiau...

CVE-2005-4209

WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting XSS...