Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-16516

Malware in sbrugna...

7.5CVSS7.5AI score0.00786EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-16514

Malware in sbrugna...

6.1CVSS6.3AI score0.00605EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:48 p.m.6 views

CVE-2020-23776

A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request...

7.5CVSS6.8AI score0.00786EPSS
Exploits1
NVD
NVD
added 2021/01/26 10:15 p.m.17 views

CVE-2020-23774

A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed...

6.1CVSS6.1AI score0.00605EPSS
Exploits1References1
NVD
NVD
added 2021/01/26 10:15 p.m.18 views

CVE-2020-23776

A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request...

7.5CVSS7.4AI score0.00786EPSS
Exploits1References1
Prion
Prion
added 2021/01/26 10:15 p.m.13 views

Cross site scripting

A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed...

4.3CVSS5.9AI score0.00605EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/01/26 10:15 p.m.19 views

Server side request forgery (ssrf)

A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request...

5CVSS7.4AI score0.00786EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/01/26 9:2 p.m.71 views

CVE-2020-23776

CVE-2020-23776 is an SSRF vulnerability affecting Winmail 6.5 in app.php (parameter key) when HTTPS is enabled. The issue allows an attacker to induce the server to make HTTP requests to a target URL by manipulating the HOST header in requests. Documented in multiple feeds (NVD/Red Hat/CVE lists)...

7.5CVSS7.4AI score0.00786EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/26 9:2 p.m.21 views

CVE-2020-23776

A SSRF vulnerability exists in Winmail 6.5 in app.php in the key parameter when HTTPS is on. An attacker can use this vulnerability to cause the server to send a request to a specific URL. An attacker can modify the request header 'HOST' value to cause the server to send the request...

7.5AI score0.00786EPSS
Exploits1References1
CVE
CVE
added 2021/01/26 9:2 p.m.74 views

CVE-2020-23774

The CVE-2020-23774 entry concerns a reflected XSS in Winmail 6.5, specifically in tohtml/convert.php. The underlying issue is the ability to cause JavaScript execution via user-controlled input reflected in the response. Evidence from connected records confirms the affected software/component and...

6.1CVSS6AI score0.00605EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/01/26 9:2 p.m.22 views

CVE-2020-23774

A reflected XSS vulnerability exists in tohtml/convert.php of Winmail 6.5, which can cause JavaScript code to be executed...

6.1AI score0.00605EPSS
Exploits1References1
Rows per page
Query Builder