CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Accellion: Security Vulnerabilities

CVE-2008-7012

courier/1000@/api_error_email.html (aka "error reporting page") in Accellion File Transfer Appliance FTA_7_0_178, and possibly other versions before FTA_7_0_189, allows remote attackers to send spam e-mail via modified description and client_email parameters.

CVSS Score

7.8

EPSS Score

0.046

Published

2009-08-19

CVE-2008-3850

Cross-site scripting (XSS) vulnerability in Accellion File Transfer FTA_7_0_135 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to courier/forgot_password.html.

CVSS Score

4.3

EPSS Score

0.002

Published

2008-08-27

Page 5

Vulnerabilities

Vulnerable Software

Accellion: Security Vulnerabilities

Products

Pricing

Contact Us