CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Emumail: >> Emu Webmail >> 5.2.7 Security Vulnerabilities

CVE-2004-2334

Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote attackers to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail.fcgi, (2) the folder parameter in emumail.fcgi, or Javascript in the (3) username or (4) password field in the login page.

CVSS Score

4.3

EPSS Score

0.01

Published

2004-12-31

CVE-2004-2385

EMU Webmail 5.2.7 allows remote attackers to obtain sensitive path information (home directory) via an HTTP request for init.emu.

CVSS Score

5.0

EPSS Score

0.048

Published

2004-12-31

Page 1

Vulnerabilities

Vulnerable Software

Emumail: >> Emu Webmail >> 5.2.7 Security Vulnerabilities

Products

Pricing

Contact Us