CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Prion•added 2017/07/25 5:29 p.m.•11 views

Cross site scripting

Cross-site scripting XSS vulnerability in atmail prior to version 7.8.0.2 allows remote attackers to inject arbitrary web script or HTML within the body of an email via an IMG element with both single quotes and double quotes...

4.3CVSS6AI score0.0026EPSS

Exploits1References2Affected Software1

CNVD•added 2017/06/12 12:0 a.m.•1 views

AtMail Cross-Site Request Forgery Vulnerability (CNVD-2017-09348)

AtMail is an open source WebMail client from the Australian company Atmail , which provides a Webmail interface , address book management , calendars and other features , and supports IMAP, video mail and so on. A cross-site request forgery vulnerability exists in versions of AtMail prior to...

8.8CVSS6.8AI score0.00159EPSS

Exploits0References1

Prion•added 2017/06/08 2:29 p.m.•15 views

Cross site request forgery (csrf)

atmail before 7.8.0.2 has CSRF, allowing an attacker to create a user account...

6.8CVSS7AI score0.00159EPSS

Exploits0References1Affected Software1

Prion•added 2017/06/08 2:29 p.m.•10 views

Cross site request forgery (csrf)

atmail before 7.8.0.2 has CSRF, allowing an attacker to change the SMTP hostname and hijack all emails...

6.8CVSS7AI score0.00159EPSS

Exploits0References1Affected Software1