@tutao/tutanota-crypto (>=275.250320.0 <=314.251030.0) potentially affected by unknown CVE via @tutao/tutanota-utils (>=275.250320.0 <=314.251030.0)

@tutao/tutanota-utils NPM version =275.250320.0, =275.250320.0, =314.251030.0 Source cves: unknown CVE Source advisory: OSV:GHSA-24V3-254G-JV85...

@tutao/tutanota-crypto (>=314.251028.1 <=314.251030.0) potentially affected by unknown CVE via @tutao/tutanota-utils (>=314.251028.1 <=314.251030.0)

@tutao/tutanota-utils NPM version =314.251028.1, =314.251028.1, =314.251030.0 Source cves: unknown CVE Source advisory: SNYK:JS-TUTAOTUTANOTAUTILS-14545442...

EUVD-2023-50375

Malicious code in bioql PyPI...

CVE-2023-46116

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

Tutanota Input Validation Error Vulnerability

Tutanota is a very security- and privacy-conscious email service from Tuta that encrypts email, contacts, and calendar entries on all devices. An input validation error vulnerability exists in Tutanota versions 3.118.12 through 3.119.10, which stems from an attacker being able to send a manipulat...

Tutanota Code Issue Vulnerability

Tutanota is a very security- and privacy-conscious email service from Tuta that encrypts email, contacts, and calendar entries on all devices. A code issue vulnerability exists in Tutanota versions prior to 119.10. An attacker exploiting this vulnerability could attach images to html emails loade...

CVE-2023-46116

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

Code injection

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

CVE-2023-46116

The CVE affects Tutanota (Tuta Mail) when opening links in emails in external applications. Before update, it blocks file: but does not sufficiently validate other URL schemes (e.g., ftp:, smb:), which can lead to code execution on a victim’s machine if the user interacts with a malicious link. T...

CVE-2023-46116 Remote Code Execution via insufficiently sanitized call to shell.openExternal

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

CVE-2023-46116 Remote Code Execution via insufficiently sanitized call to shell.openExternal

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

CVE-2023-46116 Remote Code Execution via insufficiently sanitized call to shell.openExternal

Tutanota Tuta Mail is an encrypted email provider. Tutanota allows users to open links in emails in external applications. Prior to version 3.118.12, it correctly blocks the file: URL scheme, which can be used by malicious actors to gain code execution on a victims computer, however fails to chec...

Tutanota Input Validation Error Vulnerability

Tutanota is a very security- and privacy-conscious email service from Tuta that encrypts email, contacts, and calendar entries on all devices. An input validation error vulnerability exists in versions prior to Tutanota 3.118.12, which stems from allowing a user to open a link in an email in an...

Microsoft bars Tutanota users from registering MS Teams accounts

By Waqas According to a Microsoft spokesperson, it will not be possible to change the current situation with Tutanota. Tutanota… This is a post from HackRead.com Read the original post: Microsoft bars Tutanota users from registering MS Teams accounts...

German court forcing Tutanota to let authorities read emails in plain text

By Sudais Asif As of 2017, Tutanota had over 2 million users across the globe. Find out why Germany wants to backdoor the encrypted email service provider. This is a post from HackRead.com Read the original post: German court forcing Tutanota to let authorities read emails in plain text...

Russia Blocks Encrypted Email Service Tutanota

By Deeba Ahmed The open-source encrypted email service Tutanota has been blocked in certain parts of Russia over the weekend. This is a post from HackRead.com Read the original post: Russia Blocks Encrypted Email Service Tutanota...

Tutanota: simply secure emails - Customized SSL, MIT license vulnerabilities

HackApp vulnerability scanner discovered that application Tutanota: simply secure emails published at the 'play' market has multiple vulnerabilities...

Grimbb 1.3 Hash Disclosure

Grimbb V1.3 User and Password Hash Disclosure ============================================== Discovered by NA, NAattutanota.com ======================================= Description ============ A PHP 4 Open Source Flat File Based Bulletin Board System - GrimBB uses text files to store the data for...

PHP Support Tickets 1.3 Local File Inclusion

PHPSTicketsv1.3 File Inclusion Vulnerability ================================================ Discovered by NA, NAattutanota.com ======================================= Description ============ PHP Support Tickets; will allow a webmaster the ability to offer its user base a means to contact its...

PHP Support Tickets 1.3 SQL Injection

PHPSTicketsv1.3 SQL Injection Vulnerabilty ================================================ Discovered by NA, NAattutanota.com ======================================= Description ============ PHP Support Tickets; will allow a webmaster the ability to offer its user base a means to contact its...