CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

Tenable Nessus•added 2026/02/18 12:0 a.m.•1 views

SmarterMail < 100.0.9526 XSS (CVE-2026-26930)

The version of SmarterTools SmarterMail installed on the remote host is prior to 100.0.9526. It is, therefore, affected by a cross-site scripting vulnerability: - SmarterTools SmarterMail before build 9526 allows XSS via MAPI requests. CVE-2026-26930 Note that Nessus has not tested for this issue...

7.2CVSS5.1AI score0.00014EPSS

Exploits1References3

ATTACKERKB•added 2026/02/16 4:27 p.m.•2 views

CVE-2026-26930

SmarterTools SmarterMail before 9526 allows XSS via MAPI requests...

7.2CVSS5.3AI score0.00014EPSS

Exploits1References3

Cvelist•added 2026/02/16 4:27 p.m.•23 views

CVE-2026-26930

SmarterTools SmarterMail before 9526 allows XSS via MAPI requests...

7.2CVSS0.00014EPSS

Exploits1References2

Positive Technologies•added 2026/02/16 12:0 a.m.•1 views

PT-2026-8360

Name of the Vulnerable Software and Affected Versions SmarterTools SmarterMail versions prior to 9526 Description SmarterTools SmarterMail is susceptible to a cross-site scripting XSS issue through MAPI requests. The issue allows for the injection of malicious scripts via crafted MAPI requests...

7.2CVSS5AI score0.00014EPSS

Exploits1References7

CNNVD•added 2026/02/16 12:0 a.m.•3 views

SmarterTools SmarterMail 安全漏洞

SmarterTools SmarterMail is a set of email server software developed by SmarterTools Corporation. This software supports features such as spam filtering, data statistics, and Simple Mail Transfer Protocol SMTP authentication. Previous versions of SmarterTools SmarterMail version 9526 had security...

7.2CVSS5.6AI score0.00014EPSS

Exploits1References3

SUSE CVE•added 2025/10/16 11:38 p.m.•1 views

SUSE CVE-2025-11719

Starting in Thunderbird 143, the use of the native messaging API by web extensions on Windows could lead to crashes caused by use-after-free memory corruption. This vulnerability was fixed in Firefox 144 and Thunderbird 144...

9.8CVSS5.8AI score0.00066EPSS

Exploits0References3

Positive Technologies•added 2025/10/14 12:0 a.m.•2 views

PT-2025-41907

Name of the Vulnerable Software and Affected Versions Firefox versions prior to 144 Thunderbird versions prior to 144 Description A flaw exists in Firefox and Thunderbird where the use of the native messaging API by web extensions on Windows may result in crashes due to use-after-free memory...

10CVSS6.6AI score0.00106EPSS

Exploits0References30

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-2185

Malware in sbrugna...

4CVSS6.4AI score0.00148EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-4511

Malicious code in bioql PyPI...

4.3CVSS5AI score0.00179EPSS

Exploits0References6

vulnersOsv•added 2025/06/17 3:37 p.m.•1 views

candid-extractor (>=0.1.0 <=0.1.2), debug-engine (>=0.1.0 <=0.1.1) +69 more potentially affected by unknown CVE via wasmtime-jit-debug (>=0.35.0 <=1.0.2)

wasmtime-jit-debug CARGO version =0.35.0, =0.1.0, =0.1.0, =0.1.3, =0.4.0, =0.4.0, =0.5.0, =0.0.1-alpha, =0.0.6, =0.11.0, =0.9.0, =0.9.0, =0.9.0, =0.10.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-9GHP-W2HM-VFPF...

5.8AI score

Exploits0

SUSE CVE•added 2023/02/15 5:16 a.m.•3 views

SUSE CVE-2015-5331

Moodle 2.9.x before 2.9.3 does not properly check the contact list before authorizing message transmission, which allows remote authenticated users to bypass intended access restrictions and conduct spam attacks via the messaging API...

4.3CVSS6.9AI score0.00179EPSS

Exploits0References3

Snyk•added 2022/06/23 9:24 a.m.•5 views

Malicious Package

Overview @uieng/messaging-api is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7AI score

Exploits0References3

CISA KEV Catalog•added 2022/05/24 12:0 a.m.•15 views

Microsoft Internet Explorer Messaging API Information Disclosure Vulnerability

An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory. An attacker who successfully exploited this vulnerability could allow the attacker to test for the presence of files on disk...

6.5CVSS1.9AI score0.28303EPSS

In wildExploits0

Github Security Blog•added 2022/05/13 1:12 a.m.•12 views

Moodle improper access control

4.3CVSS5.1AI score0.00179EPSS

Exploits0References5Affected Software1

OSV•added 2022/05/13 1:12 a.m.•13 views

GHSA-M7CC-6VHG-39WR Moodle improper access control

4.3CVSS4.6AI score0.00179EPSS

Exploits0References5

OpenVAS•added 2021/04/14 12:0 a.m.•25 views

Microsoft Windows Multiple Vulnerabilities (KB5001335)

This host is missing a critical security update according to Microsoft KB5001335 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.20904EPSS

Exploits1References1

Prion•added 2021/04/13 8:15 p.m.•15 views

Remote code execution

Microsoft Internet Messaging API Remote Code Execution Vulnerability...

6.8CVSS7.9AI score0.03937EPSS

Exploits0References1Affected Software5

CVE•added 2021/04/13 7:32 p.m.•114 views

CVE-2021-27089

Technical details for CVE-2021-27089 are not publicly provided in the supplied documents. Monitor for updates from vendor advisories and affected products.

7.8CVSS8.2AI score0.03937EPSS

Exploits0References1Affected Software8

Cvelist•added 2021/04/13 7:32 p.m.•22 views

CVE-2021-27089 Microsoft Internet Messaging API Remote Code Execution Vulnerability

...

7.8CVSS8.3AI score0.03937EPSS

Exploits0References1