Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.0 views

EUVD-2020-20252

Malware in sbrugna...

6.5CVSS6.5AI score0.0047EPSS
Exploits1References7
Microsoft CVE
Microsoft CVEadded 2025/10/02 6:11 a.m.2 views

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive file to a new email. If a victim user does not notice that an attachment was added and sends the email, this could result in sensitive information disclosure. It has been confirmed that the code behind this issue is in xdg-email and not in Thunderbird.

...

6.5CVSS7AI score0.0047EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2020-27748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added vi...

6.5CVSS6.5AI score0.0047EPSS
Exploits1References4
Amazon
Amazonadded 2023/03/22 12:0 a.m.6 views

Medium: xdg-utils

Issue Overview: A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches...

7.4CVSS6.9AI score0.0047EPSS
Exploits2
Amazon
Amazonadded 2023/03/21 12:0 a.m.49 views

Medium: xdg-utils

Issue Overview: A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches...

7.4CVSS6.9AI score0.0047EPSS
Exploits2
SUSE CVE
SUSE CVEadded 2023/02/15 6:9 a.m.0 views

SUSE CVE-2008-0386

Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to 1 xdg-open or 2 xdg-email...

6.8CVSS7.8AI score0.03085EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2023/02/15 3:52 a.m.1 views

SUSE CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.5AI score0.0047EPSS
Exploits1References3
OSV
OSVadded 2021/06/01 2:15 p.m.1 views

AZL-37062 CVE-2020-27748 affecting package xdg-utils 1.2.1-3

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.6AI score0.0047EPSS
Exploits1References1
NVD
NVDadded 2021/06/01 2:15 p.m.9 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS0.0047EPSS
Exploits1References2
OSV
OSVadded 2021/06/01 2:15 p.m.12 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.1AI score
Exploits0References2
OSV
OSVadded 2021/06/01 2:15 p.m.1 views

DEBIAN-CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.5AI score0.0047EPSS
Exploits1References1
OSV
OSVadded 2021/06/01 2:15 p.m.3 views

AZL-7424 CVE-2020-27748 affecting package xdg-utils 1.1.3-7

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.6AI score0.0047EPSS
Exploits1References1
Prion
Prionadded 2021/06/01 2:15 p.m.14 views

Information disclosure

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

4.3CVSS6.1AI score0.0047EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2021/06/01 1:15 p.m.22 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6AI score0.0047EPSS
Exploits1
CVE
CVEadded 2021/06/01 1:15 p.m.246 views

CVE-2020-27748

CVE-2020-27748 affects xdg-utils’ xdg-email in 1.1.0-rc1 and newer. Handling mailto: URIs, xdg-email can discreetly attach a file to an email sent to Thunderbird, via code in xdg-email (not Thunderbird). This can lead to exposure of sensitive data if a user unknowingly sends the email with the at...

6.5CVSS6.1AI score0.0047EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2021/06/01 1:15 p.m.15 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.2AI score0.0047EPSS
Exploits1References2
AlpineLinux
AlpineLinuxadded 2021/06/01 1:15 p.m.41 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS1.7AI score0.0047EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2020/11/24 12:0 a.m.27 views

CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.6AI score0.0047EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2020/11/24 12:0 a.m.2 views

PT-2020-16799 · Mozilla +4 · Thunderbird +4

Name of the Vulnerable Software and Affected Versions: xdg-utils versions 1.1.0-rc1 and newer Description: A flaw was found in the xdg-email component. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could...

6.5CVSS6.6AI score0.0047EPSS
Exploits1References20
OSV
OSVadded 2020/11/24 12:0 a.m.0 views

UBUNTU-CVE-2020-27748

A flaw was found in the xdg-email component of xdg-utils-1.1.0-rc1 and newer. When handling mailto: URIs, xdg-email allows attachments to be discreetly added via the URI when being passed to Thunderbird. An attacker could potentially send a victim a URI that automatically attaches a sensitive fil...

6.5CVSS6.7AI score0.0047EPSS
Exploits1References4
Rows per page
Query Builder