Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:6 a.m.6 views

CVE-2019-20491

cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions SEC-508...

5.5CVSS6.9AI score0.00713EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11035

Malware in sbrugna...

5.5CVSS5.6AI score0.00713EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-5049

Malware in sbrugna...

5.8CVSS5.9AI score0.01189EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-30254

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.01148EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-30253

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.01148EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 5:38 a.m.4 views

CVE-2023-26434

When adding an external mail account, processing of POP3 "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue POP3 service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted POP3 server...

4.3CVSS6.7AI score0.01148EPSS
Exploits0References1
OSV
OSV
added 2020/03/16 9:15 p.m.4 views

CVE-2019-20491

cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions SEC-508...

5.4CVSS5.8AI score0.00713EPSS
Exploits0References1
NVD
NVD
added 2020/03/16 9:15 p.m.13 views

CVE-2019-20491

cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions SEC-508...

5.5CVSS5.5AI score0.00713EPSS
Exploits0References1
CVE
CVE
added 2020/03/16 8:13 p.m.51 views

CVE-2019-20491

CVE-2019-20491 concerns cPanel prior to 82.0.18 where an attacker can leverage virtual mail accounts to bypass account suspensions (SEC-508). This is the explicit vulnerability described in multiple sources. The linked Red Hat/CNVD/etc. entries corroborate the same issue. Impact is that a bypass ...

5.5CVSS5.5AI score0.00713EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2016/12/15 6:59 a.m.5 views

CVE-2016-4046

An issue was discovered in Open-Xchange OX App Suite before 7.8.1-rev11. The API to configure external mail accounts can be abused to map and access network components within the trust boundary of the operator. Users can inject arbitrary hosts and ports to API calls. Depending on the response typ...

5.8CVSS5.9AI score0.01189EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/01/19 12:0 a.m.27 views

Debian Security Advisory DSA 3132-1 (icedove - security update)

Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb3132.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3132-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2015 Greenbone Networks GmbH...

7.5CVSS0.5AI score0.03861EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2014/06/16 12:0 a.m.33 views

Debian Security Advisory DSA 2960-1 (icedove - security update)

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client: multiple memory safety errors and buffer overflows may lead to the execution of arbitrary code or denial of service. OpenVAS Vulnerability Test $Id: deb2960.nasl 6724 2017-07-14...

10CVSS0.7AI score0.06381EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2013/10/23 12:0 a.m.60 views

Mac OS X 10.x < 10.9 Multiple Vulnerabilities (BEAST)

The remote host is running a version of Mac OS X 10.x that is prior to version 10.9. The newer version contains multiple security-related fixes for the following components : - Application Firewall - App Sandbox - Bluetooth - CFNetwork - CFNetwork SSL - Console - CoreGraphics - curl - dyld -...

9.3CVSS6.4AI score0.73327EPSS
Exploits23References52
Atlassian
Atlassian
added 2013/06/05 6:39 a.m.20 views

Passwords of configured SMTP mail accounts are stored in cleartext

Passwords for configured mail accounts are stored in clear text in the database as can be seen e.g. by: code SELECT FROM BANDANA WHERE BANDANAKEY = 'atlassian.confluence.space.mailaccounts'; code Even when being an admin I should NOT be able to read-out other users email account password! This...

2.7AI score
Exploits0Affected Software1
Atlassian
Atlassian
added 2013/06/05 6:39 a.m.27 views

Passwords of configured SMTP mail accounts are stored in cleartext

panel:bgColor=e7f4fa NOTE: This suggestion is for Confluence Server. Using Confluence Cloud? See the corresponding suggestion|http://jira.atlassian.com/browse/CONFCLOUD-29534. panel Passwords for configured mail accounts are stored in clear text in the database as can be seen e.g. by: code SELECT...

1.1AI score
Exploits0Affected Software1
The Hacker News
The Hacker News
added 2012/06/23 12:42 p.m.8 views

A virus specialized for AutoCAD, a perfect cyber espionage tool

A virus specialized for AutoCAD, a perfect cyber espionage tool In recent years we are assisting to a profoundly change in the nature of malware, it is increased the development for spy purposes, for its spread in both private and government sectors. The recent case of Flame malware has...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2012/04/12 9:34 a.m.70 views

Iran replacing Google, Hotmail with its own internal search engines and email services

Iran replacing Google, Hotmail with its own internal search engines and email services Iran has denied the report that it plans to cut itself off from the Internet. In a statement, the ministry said "The report is in no way confirmed by the ministry". It added that it was "completely baseless," a...

6.7AI score
Exploits0
ThreatPost
ThreatPost
added 2009/04/23 7:7 p.m.20 views

Cybergangs use cheap labor to break codes on social sites

From USA Today Byron Acohido It’s become the new front in cybercrime: scams and identity-theft programs that attack e-mail accounts and users of social-networking sites such as Facebook and MySpace. To carry out many of these automated attacks, cybercriminals first must overcome “captchas,” the...

2.1AI score
Exploits0References1
NVD
NVD
added 2009/04/08 10:30 a.m.20 views

CVE-2008-6674

mailPage.asp in QuickerSite 1.8.5 allows remote attackers to flood e-mail accounts with messages via a large number of requests with a modified sEmail parameter...

5CVSS6.6AI score0.02732EPSS
Exploits0References4
Cvelist
Cvelist
added 2009/04/08 10:0 a.m.25 views

CVE-2008-6674

mailPage.asp in QuickerSite 1.8.5 allows remote attackers to flood e-mail accounts with messages via a large number of requests with a modified sEmail parameter...

6.6AI score0.02732EPSS
Exploits0References4
Rows per page
Query Builder