Lucene search
K

12 matches found

CVE
CVE
added 2021/09/20 9:30 p.m.53 views

CVE-2021-41083

CVE-2021-41083 is a CSRF vulnerability in Dada Mail prior to version 11.16.0. In affected versions, a user who is logged into the list control panel could be induced to visit a malicious page (via phishing email/SMS, etc.) that allows an attacker to perform actions in the user’s session, includin...

8.8CVSS8.3AI score0.00392EPSS
Exploits0References2Affected Software1
Openbugbounty
Openbugbounty
added 2018/02/21 11:33 a.m.10 views

pinnacleworldwide.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-565013 Description| Value ---|--- Affected Website:| pinnacleworldwide.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Majordomo 1.89/1.90 lists Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2310/info Majordomo is a perl-based Internet e-mail list server. Versions prior to 1.91 are vulnerable to an attack whereby specially crafted e-mail headers are incorrectly processed, yielding the ability to execute...

7.1AI score
Exploits0
0day.today
0day.today
added 2010/08/27 12:0 a.m.48 views

Job Portal Multiple Vulnerabilities

Exploit for php platform in category web applications =================================== Job Portal Multiple Vulnerabilities =================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/07/27 12:0 a.m.16 views

Magician Blog 1.0 - ids SQL Injection

Magician Blog 1.0 - ids SQL Injection ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

0.4AI score
Exploits0
myhack58
myhack58
added 2009/05/28 12:0 a.m.12 views

dvbbs delete the upload. inc after the shell was a method-vulnerability warning-the black bar safety net

dvbbs delete the upload. inc after the shell was a method - the premise is to give the front Desk administrative privileges Into the background after Go to the user management Just change the personal e-mail address for %eval requestchr3 5%@163.com After saving Find the mail list export Then expo...

0.3AI score
Exploits0
OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.25 views

XSS vulnerability in Dada Mail

The remote host is running Dada Mail, a free, e-mail list management system written in Perl. According to its banner, the remote version of this software does not properly validate user written content before submitting that data to the archiving system. A malicious user could embed arbitrary...

4.3CVSS6.6AI score0.01164EPSS
Exploits0References2
CVE
CVE
added 2001/09/12 4:0 a.m.51 views

CVE-1999-1155

CVE-1999-1155 affects the LakeWeb Mail List CGI script, where remote attackers can execute arbitrary commands by injecting shell metacharacters into the recipient email address. The description specifies a remote command execution risk with network access and no authentication. No explicit patch ...

7.5CVSS8.5AI score0.02375EPSS
Exploits1References3Affected Software1
0day.today
0day.today
added 2000/11/17 12:0 a.m.66 views

UtilMind Mail List 1.7 - Users Can Execute Commands

Exploit for cgi platform in category web applications =================================================== UtilMind Mail List 1.7 - Users Can Execute Commands =================================================== !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions /...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2000/11/17 12:0 a.m.12 views

UtilMind Mail List 1.7 - Users Can Execute Commands

UtilMind Mail List 1.7 - Users Can Execute Commands !/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions / http://www.utilmind.com/ Actually a pretty amusing exploit to write! The 'openMAIL, "|$mailprog $address"' ... code sends e-mail to those who are on the mailin...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2000/11/17 12:0 a.m.115 views

UtilMind Mail List 1.7 - Users Can Execute Commands

!/usr/bin/perl -w Mailing List & News Version 1.7 / PoC Exploit. UtilMind Solutions / http://www.utilmind.com/ Actually a pretty amusing exploit to write! The 'openMAIL, "|$mailprog $address"' ... code sends e-mail to those who are on the mailing list - and the subscribers' e-mail addresses are...

7.4AI score
Exploits0
NVD
NVD
added 1998/11/09 5:0 a.m.9 views

CVE-1999-1155

LakeWeb Mail List CGI script allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address...

7.5CVSS0.02375EPSS
Exploits1References3
Rows per page
Query Builder