CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2023-36544

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00147EPSS

Exploits0References3

RedhatCVE•added 2025/05/23 3:48 a.m.•13 views

CVE-2023-32290

The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server...

7.5CVSS6.7AI score0.00147EPSS

Exploits0References1

OSV•added 2023/05/07 2:15 a.m.•0 views

CVE-2023-32290

The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server...

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2023/05/07 2:15 a.m.•6 views

CVE-2023-32290

The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server...

7.5CVSS7.3AI score0.00147EPSS

Exploits0References3

CNNVD•added 2023/05/07 12:0 a.m.•3 views

myMail iOS 安全漏洞

myMail is an open source mail client from mailbox.org. A security vulnerability exists in myMail iOS version 14.30 and earlier versions, which stems from the application sending plaintext credentials...

7.5CVSS7.3AI score0.00147EPSS

Exploits0References4

CVE•added 2023/05/07 12:0 a.m.•45 views

CVE-2023-32290

Summary: CVE-2023-32290 affects the myMail app for iOS up to version 14.30, where credentials are sent in cleartext when a server expects STARTTLS. The root issue is improper handling of STARTTLS negotiation, leading to exposure of authentication data. Impact: Confidentiality impact is high as cr...

7.5CVSS7.2AI score0.00147EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2023/05/07 12:0 a.m.•4 views

CVE-2023-32290

The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server...

7.3AI score0.00147EPSS

Exploits0References3

Cvelist•added 2023/05/07 12:0 a.m.•8 views

CVE-2023-32290

The myMail app through 14.30 for iOS sends cleartext credentials in a situation where STARTTLS is expected by a server...

7.5AI score0.00147EPSS

Exploits0References3

Hacker One•added 2020/06/01 9:32 p.m.•9 views

Mail.ru: Private file read through file attachment

my.com MyMail application for Android could be tricked by malicious local application selected as a file picker by user to copy the file from application folder to insecure location...

2.2AI score

Exploits0

Hacker One•added 2020/01/01 10:33 p.m.•19 views

Mail.ru: [myMail Android] Access to protected app components via RegistrationPhoneActivity

RegistrationPhoneActivity of My.com MyMail application for Android could be locally exploited by malicious application to access internal activities as was demonstrated by spoofing logon screen to send authentication request to arbitrary site...

4.6AI score

Exploits0

Openbugbounty•added 2018/02/10 8:10 a.m.•11 views

wcomco.net XSS vulnerability

Open Bug Bounty ID: OBB-556199 Description| Value ---|--- Affected Website:| wcomco.net Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

Hacker One•added 2017/10/15 8:33 a.m.•25 views

Mail.ru: blind XXE when uploading avatar in mymail phone app

Blind XML external ENTITY / DTD injection via avatar upload feature in My.Com's MyMail backend results in potential SSRF...

7.5AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

MyMail 1.0 Login.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18656/info MyMail is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

7.1AI score

Exploits0

securityvulns•added 2006/07/09 12:0 a.m.•24 views

Webvizyon Portal 2006 Version SQL Injection

Title : Webvizyon Portal 2006 Version SQL Injection - Site : http://www.Cyber-Warrior.org - Author : StorMBoY - Mail : [email protected] - Exploit : http://www.target.com/path/SayfalaAltList.asp?ID=-1 UNION ALL SELECT 0,kullaniciadi,sifre FROM uyeler - StorMBoY 08.07.2006 -- Get your free emai...

1.5AI score

Exploits0

securityvulns•added 2006/06/27 12:0 a.m.•27 views

[Kurdish Security # 9] MyMail Directory Traversal And XSS Attacking Vulnerability

Kurdish Security Advisory irc.gigachat.net kurdhack Discovered by Botan http://scripts.codingclick.com/MyMail/ http://kurdishsecurity.blogspot.com/2006/06/kurdish-security-9-mymail-directory.html CodingClick.com MyMail Script is useing for scripts.The passing can do between directory. Examine.. N...

0.2AI score

Exploits0

Packet Storm•added 2006/06/27 12:0 a.m.•35 views

MyMail.txt

7.4AI score

Exploits0

Exploit DB•added 2006/06/26 12:0 a.m.•20 views

MyMail 1.0 - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18656/info MyMail is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

7AI score

Exploits0

exploitpack•added 2006/06/26 12:0 a.m.•13 views

MyMail 1.0 - login.php Cross-Site Scripting

MyMail 1.0 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18656/info MyMail is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitra...

6.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by