Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2026/04/01 5:0 a.m.4 views

CVE-2026-30878

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/31 10:36 p.m.6 views

EUVD-2026-17261

baserCMS has Mail Form Acceptance Bypass via Public API...

5.3CVSS5.9AI score0.00382EPSS
Exploits1References4
NVD
NVD
added 2026/03/31 1:16 a.m.12 views

CVE-2026-30878

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS0.00382EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/31 12:45 a.m.4 views

CVE-2026-30878 baserCMS: Mail Form Acceptance Bypass via Public API

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/31 12:45 a.m.23 views

CVE-2026-30878 baserCMS: Mail Form Acceptance Bypass via Public API

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS0.00382EPSS
Exploits1References3
OSV
OSV
added 2026/03/31 12:45 a.m.6 views

CVE-2026-30878 baserCMS: Mail Form Acceptance Bypass via Public API

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.4 views

PT-2026-29149

baserCMS is a website development framework. Prior to version 5.2.3, a public mail submission API allows unauthenticated users to submit mail form entries even when the corresponding form is not accepting submissions. This bypasses administrative controls intended to stop form intake and enables...

5.3CVSS5.8AI score0.00382EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-9601

Malware in sbrugna...

4.3CVSS5AI score0.01348EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 8:13 a.m.18 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.3CVSS6.8AI score0.00975EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/03/02 4:14 a.m.3 views

SUSE CVE-2019-11499

In the IMAP Server in Dovecot 2.3.3 through 2.3.5.2, the submission-login component crashes if AUTH PLAIN is attempted over a TLS secured channel with an unacceptable authentication message...

7.5CVSS7.1AI score0.02525EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2020/06/23 4:55 p.m.27 views

CVE-2020-14932

An unsafe deserialization vulnerability was found in SquirrelMail. This flaw allows an authenticated user to craft malicious form data when submitting mail...

7.5CVSS3AI score0.01431EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/08/22 12:0 a.m.26 views

Joomla! 1.6.x < 3.9.11 Joomla 3.9.11 Release (5775-joomla-3-9-11)

According to its self-reported version, the instance of Joomla! running on the remote web server is 1.6.x prior to 3.9.11. It is, therefore, affected by a vulnerability in comcontact due to improper access control checks. A remote attacker can exploit this to submit mail in disabled forms. Note...

5.3CVSS5.7AI score0.00975EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2019/08/16 12:0 a.m.160 views

Joomla! < 3.9.11 Mail Submission Vulnerability

Joomla! is prone to inadequate checks in comcontact which could allow mail submission in disabled forms. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5.3CVSS5.5AI score0.00975EPSS
Exploits0References1
NVD
NVD
added 2019/08/14 4:15 a.m.20 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.3CVSS5.2AI score0.00975EPSS
Exploits0References1
OSV
OSV
added 2019/08/14 4:15 a.m.18 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.3CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2019/08/14 4:15 a.m.14 views

Design/Logic Flaw

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5CVSS5.3AI score0.00975EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/08/14 3:57 a.m.24 views

CVE-2019-15028

In Joomla! before 3.9.11, inadequate checks in comcontact could allow mail submission in disabled forms...

5.2AI score0.00975EPSS
Exploits0References1
CVE
CVE
added 2019/08/14 3:57 a.m.137 views

CVE-2019-15028

CVE-2019-15028 affects Joomla! core prior to 3.9.11, where inadequate checks in the com_contact component can allow mail submission through disabled forms. Multiple connected sources confirm the issue as an improper access-control/validation problem in com_contact, enabling a remote attacker to s...

5.3CVSS5.2AI score0.00975EPSS
Exploits0References1Affected Software1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2019/04/09 12:0 a.m.68 views

[20190801] - Core - Hardening com_contact contact form

Inadequate checks in comcontact could allowed mail submission in disabled forms...

5.3CVSS1.5AI score0.00975EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/11/05 12:0 a.m.18 views

Joomla! 1.5.x < 3.8.13 Multiple Vulnerabilities

According to its self-reported version number, the detected Joomla! application is affected by multiple vulnerabilities : - Mail submission in disabled forms due to inadequate checks in comcontact affects Joomla 2.5.0 through 3.8.12 - Inadequate default access level for comjoomlaupdate affects...

8.8CVSS7.5AI score0.02694EPSS
Exploits0References11
Rows per page
Query Builder