CVEDB API

Vulnerabilities

Vulnerable Software

Calacode: >> Atmail Webmail System Security Vulnerabilities

CVE-2007-6196

Cross-site scripting (XSS) vulnerability in util.php in Calacode @Mail before 5.2 allows remote attackers to inject arbitrary web script or HTML via the func parameter.

CVSS Score

4.3

EPSS Score

0.005

Published

2007-12-01

CVE-2006-6700

Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.

CVSS Score

6.8

EPSS Score

0.005

Published

2006-12-23

CVE-2006-0842

Cross-site scripting (XSS) vulnerability in Calacode @Mail 4.3 allows remote attackers to inject arbitrary web script or HTML via a modified javascript: string in the SRC attribute of an IMG element in an e-mail message, as demonstrated by "java	script:." NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS Score

4.3

EPSS Score

0.004

Published

2006-02-22

Page 1

Vulnerabilities

Vulnerable Software

Calacode: >> Atmail Webmail System Security Vulnerabilities

Products

Pricing

Contact Us