Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2026/02/19 5:55 p.m.3 views

CVE-2026-23607 GFI MailEssentials AI < 22.4 Anti-Spam Whitelist Description Stored XSS

GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the Anti-Spam Whitelist management interface. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$txtDescription parameter to...

5.4CVSS5.4AI score0.00173EPSS
Exploits0References2
CVE
CVE
added 2026/02/19 5:55 p.m.14 views

CVE-2026-23607

GFI MailEssentials AI (versions before 22.4) contains a stored XSS in the Anti-Spam Whitelist management interface. An authenticated user can submit HTML/JavaScript via ctl00$ContentPlaceHolder1$pv1$txtDescription to /MailEssentials/pages/MailSecurity/Whitelist.aspx, which is stored and later ren...

5.4CVSS5.4AI score0.00173EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-20887

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4 Description The software contains a stored cross-site scripting issue in the Anti-Spam Whitelist management interface. A user with valid credentials can inject HTML or JavaScript code into the...

5.4CVSS5.3AI score0.00173EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2007-0615

Malware in sbrugna...

6.8CVSS6.4AI score0.01165EPSS
Exploits0References5
securityvulns
securityvulns
added 2007/01/25 12:0 a.m.28 views

[Full-disclosure] Earthlink TotalAccess ActiveX Unsafe Methods Vulnerability

Title: ------------------- Earthlink TotalAccess ActiveX Unsafe Methods Vulnerability Vendor Contacted: ------------------- now-ish. Background Info: ------------------- Earthlink TotalAccess Download Site: http://www.earthlink.net/software/free/totalaccess/highspeed/ Description:...

0.3AI score
Exploits0
Rows per page
Query Builder