Smartermail Security Vulnerabilities and Issues — Smartermail CVE List

Lucene search

SmartertoolsSmartermail

3 matches found

CVE•added 2005/11/28 11:0 p.m.•35 views

CVE-2004-2585

Cross-site scripting (XSS) vulnerability in frmCompose.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to inject arbitrary web script or HTML via Javascript to the "check spelling" feature in the compose area.

4.3CVSS6AI score0.00675EPSS

CVE•added 2005/11/28 11:0 p.m.•31 views

CVE-2004-2584

frmAddfolder.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote authenticated users to create a folder that SmarterMail cannot delete or rename via a folder name with a null byte ("%00"). NOTE: it is not clear whether this issue poses a vulnerability.

4CVSS6.6AI score0.00267EPSS

CVE•added 2012/09/19 10:57 a.m.•31 views

CVE-2012-2578

Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a JavaScript alert function used in conjunction with the fromCharCode method, (2) a SCRIPT element, (3) a Cascading Style Sheets (...

4.3CVSS5.8AI score0.00757EPSS