| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-2580 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Postie plugin 1.4.3, and possibly before 1.5.15, for WordPress allows remote attackers to inject arbitrary web script or HTML via the From field of an email.
|
10-01-2020 - 16:54 | 20-06-2014 - 14:55 | |
| CVE-2016-6256 | 6.8 |
SAP Business One for Android 1.2.3 allows remote attackers to conduct XML External Entity (XXE) attacks via crafted XML data in a request to B1iXcellerator/exec/soap/vP.001sap0003.in_WCSX/com.sap.b1i.vplatform.runtime/INB_WS_CALL_SYNC_XPT/INB_WS_CALL
|
08-07-2019 - 20:00 | 26-05-2017 - 01:29 | |
| CVE-2006-3772 | 5.1 |
PHP-Post 0.21 and 1.0, and possibly earlier versions, when auto-login is enabled, allows remote attackers to bypass security restrictions and obtain administrative privileges by modifying the logincookie[user] setting in the login cookie.
|
17-10-2018 - 21:30 | 24-07-2006 - 12:19 | |
| CVE-2012-2569 | 4.3 |
Cross-site scripting (XSS) vulnerability in Synametrics Technologies Xeams 4.4 Build 5720 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
|
29-08-2017 - 01:31 | 19-06-2014 - 14:55 | |
| CVE-2012-2579 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in the WP SimpleMail plugin 1.0.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) To, (2) From, (3) Date, or (4) Subject field of an email.
|
29-08-2017 - 01:31 | 20-06-2014 - 14:55 | |
| CVE-2012-2572 | 4.3 |
Cross-site scripting (XSS) vulnerability in the ThreeWP Email Reflector plugin before 1.16 for WordPress allows remote attackers to inject arbitrary web script or HTML via the Subject of an email.
|
29-08-2017 - 01:31 | 19-06-2014 - 14:55 | |
| CVE-2012-2578 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a JavaScript alert function used in conjunction with the fromCharCode method, (2)
|
26-10-2012 - 04:00 | 19-09-2012 - 10:57 | |
| CVE-2012-2575 | 4.3 |
Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 6.0a4 allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IFRAME element in the body of an HTML e-mail message.
|
18-09-2012 - 04:00 | 17-09-2012 - 14:55 | |
| CVE-2012-2571 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in WinWebMail Server 3.8.1.6 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a SCRIPT element, (2) a crafted Cascading Style Sheets (CSS) expression
|
13-08-2012 - 04:00 | 12-08-2012 - 21:55 | |
| CVE-2012-2573 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in T-dah WebMail 3.2.0-2.3 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a SCRIPT element, (2) a crafted Cascading Style Sheets (CSS) expression p
|
13-08-2012 - 04:00 | 12-08-2012 - 21:55 |