Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:35 a.m.5 views

CVE-2017-18910

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. E-mail notifications can have spoofed links...

4.3CVSS7AI score0.00581EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-10000

Malware in sbrugna...

4.3CVSS4.9AI score0.00581EPSS
Exploits0References2
OSV
OSV
added 2025/06/21 1:15 p.m.2 views

CVE-2025-36016

IBM Process Mining 2.0.1 IF001 and 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

8.2CVSS5.6AI score
Exploits0References1
OSV
OSV
added 2022/12/21 9:15 a.m.4 views

CVE-2022-43543

KDDI +Message App, NTT DOCOMO +Message App, and SoftBank +Message App contain a vulnerability caused by improper handling of Unicode control characters. +Message App displays text unprocessed, even when control characters are contained, and the text is shown based on Unicode control character's...

5.4CVSS5.8AI score0.00488EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/12/21 12:0 a.m.6 views

PT-2022-26959 · Kddi +2 · Kddi +Message App +2

Name of the Vulnerable Software and Affected Versions: KDDI +Message App for Android versions prior to 3.9.2 KDDI +Message App for iOS versions prior to 3.9.4 NTT DOCOMO +Message App for Android versions prior to 54.49.0500 NTT DOCOMO +Message App for iOS versions prior to 3.9.4 SoftBank +Message...

5.4CVSS5.1AI score0.00488EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2022/04/15 6:15 a.m.2 views

CVE-2022-28345

The Signal app before 5.34 for iOS allows URI spoofing via RTLO injection. It incorrectly renders RTLO encoded URLs beginning with a non-breaking space, when there is a hash character in the URL. This technique allows a remote unauthenticated attacker to send legitimate looking links, appearing t...

7.5CVSS5.9AI score0.02192EPSS
Exploits1References5
OSV
OSV
added 2020/08/24 4:15 p.m.3 views

CVE-2020-4598

IBM Security Guardium Insights 2.0.1 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to redirect a user to a...

6.1CVSS6.3AI score0.00784EPSS
Exploits0References2
OSV
OSV
added 2020/06/19 7:15 p.m.10 views

CVE-2017-18910

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. E-mail notifications can have spoofed links...

4.3CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2020/06/19 7:15 p.m.18 views

CVE-2017-18910

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. E-mail notifications can have spoofed links...

4.3CVSS0.00581EPSS
Exploits0References1
Prion
Prion
added 2020/06/19 7:15 p.m.11 views

Design/Logic Flaw

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. E-mail notifications can have spoofed links...

4CVSS4.8AI score0.00581EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/06/19 6:45 p.m.22 views

CVE-2017-18910

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. E-mail notifications can have spoofed links...

4.7AI score0.00581EPSS
Exploits0References1
CVE
CVE
added 2020/06/19 6:45 p.m.42 views

CVE-2017-18910

Mattermost Server prior to versions 3.8.2, 3.7.5, and 3.6.7 contains an issue where email notifications can include spoofed links. The Red Hat, CNVD, NVD, OSV, and CVE listings corroborate the same vulnerability across multiple vendors and feeds. The available documents specify affected versions ...

4.3CVSS4.6AI score0.00581EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/08/05 12:0 a.m.25 views

Invision Board spoof and defacement

-INTRO- All versions of Invisions Board have a flaw in their input filtering that allows an attacker to completely mess up Invision's display and in one case I managed to change the URL of some of the forums links, which could be used to refer users to fake login sites to collect passwords etc...

0.7AI score
Exploits0
Rows per page
Query Builder