11 matches found
EUVD-2004-1127
Malware in sbrugna...
EUVD-2021-19472
Malware in sbrugna...
CVE-2021-32652
Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this vulnerability; no workarounds other than the...
CVE-2021-32652
Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this vulnerability; no workarounds other than the...
CVE-2021-32652
Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this vulnerability; no workarounds other than the...
Design/Logic Flaw
Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this vulnerability; no workarounds other than the...
Nextcloud 访问控制错误漏洞
Nextcloud is a set of open source self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. An access control error vulnerability exists in Nextcloud Mail versions prior to 1.4.3, and prior to 1.8.2, which can be exploited by an authenticated attacke...
PT-2021-19830 · Nextcloud · Nextcloud Mail
Name of the Vulnerable Software and Affected Versions: Nextcloud Mail versions prior to 1.4.3 Nextcloud Mail versions prior to 1.8.2 Description: A missing permission check in Nextcloud Mail allows another authenticated user to access mail metadata of other users. Recommendations: For versions...
CVE-2004-1129
SQL injection vulnerability in 1 fdelmail.asp, 2 addressc.asp, and possibly 3 postmail.asp and 4 fmvmail.asp in CMailServer 5.2 allow remote attackers to inject arbitrary SQL commands and delete mail metadata or e-mail addresses of contacts via the indexOfMail parameter...
CVE-2004-1129
CVE-2004-1129 affects YoungZSoft CMailServer 5.2. A remote SQL injection is possible in the components fdelmail.asp, addressc.asp, and possibly postmail.asp and fmvmail.asp via the indexOfMail parameter, allowing an attacker to inject arbitrary SQL commands and compromise mail metadata and contac...
CVE-2004-1129
SQL injection vulnerability in 1 fdelmail.asp, 2 addressc.asp, and possibly 3 postmail.asp and 4 fmvmail.asp in CMailServer 5.2 allow remote attackers to inject arbitrary SQL commands and delete mail metadata or e-mail addresses of contacts via the indexOfMail parameter...