Описание
Openfind's Mail2000 does not properly validate email atachments, allowing unauthenticated remote attackers to inject JavaScript code within the attachment and perform Stored Cross-site scripting attacks.
Ссылки
- Exploit
- Third Party Advisory
- Third Party Advisory
- Exploit
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:openfind:mail2000:7.0:*:*:*:*:*:*:*
cpe:2.3:a:openfind:mail2000:8.0:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00379
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
Openfind's Mail2000 does not properly validate email atachments, allowing unauthenticated remote attackers to inject JavaScript code within the attachment and perform Stored Cross-site scripting attacks.
EPSS
Процентиль: 59%
0.00379
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79