Lucene search

Kmail Security Vulnerabilities

cve

CVE-2006-7062

calendar.php in Kamgaing Email System (kmail) 2.3 and earlier allows remote attackers to obtain the full path of the server via an invalid d parameter, which leaks the path in an error...

6.6AI Score

0.006EPSS

2007-02-24 01:28 AM

cve

CVE-2006-2104

Multiple cross-site scripting (XSS) vulnerabilities in Kamgaing Email System (kmail) 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) d parameter to main.php, ordner parameter to (2) main.php, or (3) webdisk.php, (4) draft parameter to compose.php, or (5)...

5.8AI Score

0.019EPSS

2006-04-29 10:02 AM

cve

CVE-2005-0404

KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted...

6.5AI Score

0.037EPSS

2005-05-02 04:00 AM