Filtered by vendor Aeromail
Subscriptions
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2002-0411 | 1 Aeromail | 1 Aeromail | 2024-11-20 | N/A |
Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line. | ||||
CVE-2002-0410 | 1 Aeromail | 1 Aeromail | 2024-11-20 | N/A |
send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded. |
Page 1 of 1.