Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-40131

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.0029EPSS
Exploits0References1
NVD
NVD
added 2025/05/07 3:16 p.m.15 views

CVE-2025-47540

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs weMail wemail allows Retrieve Embedded Sensitive Data.This issue affects weMail: from n/a through = 1.14.13...

7.5CVSS0.00336EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/07 12:0 a.m.23 views

PT-2025-20154 · Wedevs · Webmail

Name of the Vulnerable Software and Affected Versions: weDevs weMail versions 1.14.13 and earlier Description: The issue allows exposure of sensitive system information to an unauthorized control sphere, enabling the retrieval of embedded sensitive data. Recommendations: For weDevs weMail version...

7.5CVSS6AI score0.00336EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 12:34 p.m.12 views

CVE-2024-43238

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in weDevs weMail wemail allows DOM-Based XSS.This issue affects weMail: from n/a through = 1.14.5...

7.1CVSS5.9AI score0.0029EPSS
Exploits0References1
NVD
NVD
added 2024/08/18 2:15 p.m.23 views

CVE-2024-43238

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in weDevs weMail wemail allows DOM-Based XSS.This issue affects weMail: from n/a through = 1.14.5...

7.1CVSS0.0029EPSS
Exploits0References1
CVE
CVE
added 2024/08/18 1:38 p.m.52 views

CVE-2024-43238

CVE-2024-43238: WeMail for WordPress has a Reflected XSS in web page generation. Affected: the weMail plugin up to version 1.14.5 (from n/a through 1.14.5). According to the connected docs, the issue is publicly associated with this CVE and has a patch status indicating it was addressed (patched)...

7.1CVSS5.9AI score0.0029EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/06/11 3:26 p.m.70 views

CVE-2024-34822

CVE-2024-34822 is a Missing Authorization vulnerability in the weMail WordPress plugin (affected: weMail up to 1.14.2). Public sources (NVD, Red Hat, CVE listings, Vuln enrichment) classify the impact as a Medium Severity (CVSS v3.1 base 5.3) with no confidentiality impact, low integrity impact, ...

5.3CVSS5.7AI score0.00381EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder