156 matches found
CVE-2026-41873
UNSUPPORTED WHEN ASSIGNED Inconsistent Interpretation of HTTP Requests 'HTTP Request/Response Smuggling' vulnerability in Pony Mail leading to admin account takeover. This issue affects all versions of the Lua implementation of Pony Mail. There is a Python implementation under development under t...
CVE-2026-41873
UNSUPPORTED WHEN ASSIGNED Inconsistent Interpretation of HTTP Requests 'HTTP Request/Response Smuggling' vulnerability in Pony Mail leading to admin account takeover. This issue affects all versions of the Lua implementation of Pony Mail. There is a Python implementation under development under t...
CVE-2026-41873 Pony Mail: Admin account takeover via request smuggling
UNSUPPORTED WHEN ASSIGNED Inconsistent Interpretation of HTTP Requests 'HTTP Request/Response Smuggling' vulnerability in Pony Mail leading to admin account takeover. This issue affects all versions of the Lua implementation of Pony Mail. There is a Python implementation under development under t...
CVE-2026-41873
Technical details are not publicly available in the provided documents; no concrete information on affected products, versions, root cause, or fixes is present. Monitor for updates.
EUVD-2026-26065
UNSUPPORTED WHEN ASSIGNED Inconsistent Interpretation of HTTP Requests 'HTTP Request/Response Smuggling' vulnerability in Pony Mail leading to admin account takeover. This issue affects all versions of the Lua implementation of Pony Mail. There is a Python implementation under development under t...
PT-2026-35747
Name of the Vulnerable Software and Affected Versions Pony Mail Lua implementation affected versions not specified Description Inconsistent interpretation of HTTP requests, known as HTTP Request/Response Smuggling, allows for admin account takeover. This occurs when a front-end server and a...
Apache Pony Mail 环境问题漏洞
Apache Pony Mail is a plugin from the Apache Foundation in the United States that includes features for email archiving, viewing, and interaction. Apache Pony Mail has an environmental issue vulnerability, which stems from inconsistent interpretation of HTTP requests, potentially allowing...
Malicious code in fun_pony_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cf683a9c7bf985dc0b7cf4f80a823a3bf14c42100508427700a310b3e9f0fea This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
MAL-2025-126964 Malicious code in grotesque_pony_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ed3afa8ecb58df2998a8258f973d440e5370d074d9c45246f2d26fbb53d943b7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-102396
Malicious code in ruralponyz3n npm...
MAL-2025-130333 Malicious code in steep_pony_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23f18d4ff5794c6d31f58ab9d2a7a84e344da3447cc5c1cd36bda37c7297fa2b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-98438
Malicious code in grotesqueponyz3n npm...
EUVD-2025-97741
Malicious code in jointponyz3n npm...
EUVD-2025-102072
Malicious code in steepponyz3n npm...
EUVD-2025-98755
Malicious code in fullponyz3n npm...
EUVD-2025-98056
Malicious code in incredibleponyz3n npm...
Malicious code in joint_pony_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector ca7c0b26cf42ab6c4c4317296d566d5c6058ec9d69efe455ce472a1c44c5d5bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-98753
Malicious code in funponyz3n npm...
EUVD-2025-96863
Malicious code in latinponyz3n npm...
EUVD-2025-92381
Malicious code in easternponyz3n npm...