Lucene search
K

37 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:24 a.m.12 views

CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS6.7AI score0.01192EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-18739

Malware in sbrugna...

5.3CVSS5.2AI score0.01192EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-8036

Malware in sbrugna...

4.3CVSS4.7AI score0.00644EPSS
Exploits0References3
Fedora
Fedora
added 2025/03/05 1:15 a.m.11 views

[SECURITY] Fedora 41 Update: exim-4.98.1-1.fc41

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

9.8CVSS7.2AI score0.75782EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2024/03/11 12:0 a.m.6 views

PT-2024-22152 · Postal · Postal

Name of the Vulnerable Software and Affected Versions: Postal versions less than 3.0.0 Description: The issue allows for SMTP Smuggling attacks, which may enable incoming e-mails to be spoofed. This could allow an incoming e-mail to be received by Postal, appearing to be from a server that a user...

5.3CVSS7.1AI score0.00664EPSS
Exploits1References8
OSV
OSV
added 2024/03/06 11:5 a.m.21 views

BIT-REDMINE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS5.4AI score0.01192EPSS
Exploits0References4
NVD
NVD
added 2021/04/28 7:15 a.m.14 views

CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS0.01192EPSS
Exploits0References3
OSV
OSV
added 2021/04/28 7:15 a.m.22 views

CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS6.7AI score
Exploits0References3
OSV
OSV
added 2021/04/28 7:15 a.m.1 views

DEBIAN-CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS5.6AI score0.01192EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/04/28 7:15 a.m.22 views

CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS6.1AI score0.01192EPSS
Exploits0References3
Prion
Prion
added 2021/04/28 7:15 a.m.16 views

Authentication flaw

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5CVSS5.5AI score0.01192EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2021/04/28 7:15 a.m.3 views

UBUNTU-CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

5.3CVSS5.8AI score0.01192EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/04/28 6:16 a.m.20 views

CVE-2021-31864

Redmine before 4.0.9, 4.1.x before 4.1.3, and 4.2.x before 4.2.1 allows attackers to bypass the addissuenotes permission requirement by leveraging the incoming mail handler...

7.5AI score0.01192EPSS
Exploits0References3
CVE
CVE
added 2021/04/28 6:16 a.m.68 views

CVE-2021-31864

CVE-2021-31864 affects Redmine: upstream versions pre-4.0.9, pre-4.1.3 (4.1.x), and pre-4.2.1 (4.2.x) are vulnerable to an access-restriction bypass via the incoming mail handler, allowing bypass of add_issue_notes permissions. Public sources confirm the issue and list affected releases; Debian L...

5.3CVSS5.4AI score0.01192EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.7 views

Redmine 安全特征问题漏洞

Redmine is a set of open source Web-based project management and defect tracking tools . The product provides project management , issue tracking and role-based access control and other features . A security feature issue vulnerability exists in Redmine versions prior to 4.0.9, 4.1.x series...

5.3CVSS5.8AI score0.01192EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2021/04/25 12:0 a.m.4 views

PT-2021-4569 · Redmine · Redmine

Name of the Vulnerable Software and Affected Versions: Redmine versions prior to 4.0.9 Redmine versions 4.1.x prior to 4.1.3 Redmine versions 4.2.x prior to 4.2.1 Description: The issue allows attackers to bypass the add issue notes permission requirement by leveraging the incoming mail handler...

9.8CVSS6.1AI score0.01737EPSS
Exploits0References40
Fedora
Fedora
added 2019/10/02 2:1 a.m.46 views

[SECURITY] Fedora 30 Update: exim-4.92.3-1.fc30

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

10CVSS1.5AI score0.42482EPSS
Exploits4
Fedora
Fedora
added 2019/09/08 3:9 a.m.47 views

[SECURITY] Fedora 29 Update: exim-4.92.2-1.fc29

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

10CVSS1.5AI score0.35736EPSS
Exploits3
OSV
OSV
added 2018/07/16 1:29 p.m.2 views

CVE-2018-13387

The IncomingMailServers resource in Atlassian JIRA Server before version 7.6.7, from version 7.7.0 before version 7.7.5, from version 7.8.0 before version 7.8.5, from version 7.9.0 before version 7.9.3 and from version 7.10.0 before version 7.10.2 allows remote attackers to inject arbitrary HTML ...

6.1CVSS5.4AI score
Exploits0References2
OSV
OSV
added 2018/02/02 2:29 p.m.2 views

CVE-2017-18039

The IncomingMailServers resource in Atlassian Jira from version 6.2.1 before version 7.4.4 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting XSS vulnerability in the messagesThreshold parameter...

6.1CVSS5.4AI score
Exploits0References2
Rows per page
Query Builder