CVE-2012-0389

Exploit

EPSS 33.84%
Veröffentlicht 24.01.2012 18:55:01
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Username parameter.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mailenable ≫ Mailenable Update- Editionpro Version <= 4.26

Mailenable ≫ Mailenable Version1.2 Editionprofessional

Mailenable ≫ Mailenable Version1.2a Editionprofessional

Mailenable ≫ Mailenable Version1.5 Editionprofessional

Mailenable ≫ Mailenable Version1.6 Editionprofessional

Mailenable ≫ Mailenable Version1.7 Editionprofessional

Mailenable ≫ Mailenable Version1.17 Editionprofessional

Mailenable ≫ Mailenable Version1.18 Editionprofessional

Mailenable ≫ Mailenable Version1.19 Editionprofessional

Mailenable ≫ Mailenable Version1.51 Editionprofessional

Mailenable ≫ Mailenable Version1.52 Editionprofessional

Mailenable ≫ Mailenable Version1.53 Editionprofessional

Mailenable ≫ Mailenable Version1.54 Editionprofessional

Mailenable ≫ Mailenable Version1.70 Editionprofessional

Mailenable ≫ Mailenable Version1.71 Editionprofessional

Mailenable ≫ Mailenable Version1.72 Editionprofessional

Mailenable ≫ Mailenable Version1.73 Editionprofessional

Mailenable ≫ Mailenable Version1.74 Editionprofessional

Mailenable ≫ Mailenable Version1.75 Editionprofessional

Mailenable ≫ Mailenable Version1.76 Editionprofessional

Mailenable ≫ Mailenable Version1.77 Editionprofessional

Mailenable ≫ Mailenable Version1.78 Editionprofessional

Mailenable ≫ Mailenable Version1.79 Editionprofessional

Mailenable ≫ Mailenable Version3.0 Update- Editionpro

Mailenable ≫ Mailenable Version3.01 Update- Editionpro

Mailenable ≫ Mailenable Version3.02 Update- Editionpro

Mailenable ≫ Mailenable Version3.03 Update- Editionpro

Mailenable ≫ Mailenable Version3.04 Update- Editionpro

Mailenable ≫ Mailenable Version3.5 Update- Editionpro

Mailenable ≫ Mailenable Version3.6 Update- Editionpro

Mailenable ≫ Mailenable Version3.10 Update- Editionpro

Mailenable ≫ Mailenable Version3.11 Update- Editionpro

Mailenable ≫ Mailenable Version3.12 Update- Editionpro

Mailenable ≫ Mailenable Version3.13 Update- Editionpro

Mailenable ≫ Mailenable Version3.14 Update- Editionpro

Mailenable ≫ Mailenable Version3.51 Update- Editionpro

Mailenable ≫ Mailenable Version3.52 Editionprofessional

Mailenable ≫ Mailenable Version3.52 Update- Editionpro

Mailenable ≫ Mailenable Version3.53 Update- Editionpro

Mailenable ≫ Mailenable Version3.61 Update- Editionpro

Mailenable ≫ Mailenable Version3.62 Update- Editionpro

Mailenable ≫ Mailenable Version3.63 Update- Editionpro

Mailenable ≫ Mailenable Version4.0 Update- Editionpro

Mailenable ≫ Mailenable Version4.1 Update- Editionpro

Mailenable ≫ Mailenable Version4.01 Update- Editionpro

Mailenable ≫ Mailenable Version4.11 Update- Editionpro

Mailenable ≫ Mailenable Version4.12 Update- Editionpro

Mailenable ≫ Mailenable Version4.13 Update- Editionpro

Mailenable ≫ Mailenable Version4.14 Update- Editionpro

Mailenable ≫ Mailenable Version4.15 Update- Editionpro

Mailenable ≫ Mailenable Version4.16 Update- Editionpro

Mailenable ≫ Mailenable Version4.17 Update- Editionpro

Mailenable ≫ Mailenable Version4.22 Update- Editionpro

Mailenable ≫ Mailenable Version4.23 Update- Editionpro

Mailenable ≫ Mailenable Version4.24 Update- Editionpro

Mailenable ≫ Mailenable Version4.25 Update- Editionpro

Mailenable ≫ Mailenable Update- Editionenterprise Version <= 4.26

Mailenable ≫ Mailenable Version1.00 Editionenterprise

Mailenable ≫ Mailenable Version1.1 Editionenterprise

Mailenable ≫ Mailenable Version1.01 Editionenterprise

Mailenable ≫ Mailenable Version1.02 Editionenterprise

Mailenable ≫ Mailenable Version1.2 Editionenterprise

Mailenable ≫ Mailenable Version1.03 Editionenterprise

Mailenable ≫ Mailenable Version1.04 Editionenterprise

Mailenable ≫ Mailenable Version1.21 Editionenterprise

Mailenable ≫ Mailenable Version1.22 Editionenterprise

Mailenable ≫ Mailenable Version1.23 Editionenterprise

Mailenable ≫ Mailenable Version1.24 Editionenterprise

Mailenable ≫ Mailenable Version1.25 Editionenterprise

Mailenable ≫ Mailenable Version1.26 Editionenterprise

Mailenable ≫ Mailenable Version3.0 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.01 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.02 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.03 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.04 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.5 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.6 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.10 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.11 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.12 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.13 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.14 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.51 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.52 Editionenterprise

Mailenable ≫ Mailenable Version3.52 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.53 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.61 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.62 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.63 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.0 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.01 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.1 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.11 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.12 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.13 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.14 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.15 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.16 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.17 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.22 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.23 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.24 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.25 Update- Editionenterprise

Mailenable ≫ Mailenable Editionpremium Version <= 4.26

Mailenable ≫ Mailenable Version4.1 Editionpremium

Mailenable ≫ Mailenable Version4.2 Editionpremium

Mailenable ≫ Mailenable Version4.21 Editionpremium

Mailenable ≫ Mailenable Version4.22 Editionpremium

Mailenable ≫ Mailenable Version4.23 Editionpremium

Mailenable ≫ Mailenable Version4.24 Editionpremium

Mailenable ≫ Mailenable Version4.25 Editionpremium

Mailenable ≫ Mailenable Version5.0 Editionprofessional

Mailenable ≫ Mailenable Version5.01 Editionprofessional

Mailenable ≫ Mailenable Version5.02 Editionprofessional

Mailenable ≫ Mailenable Version5.03 Editionprofessional

Mailenable ≫ Mailenable Version5.04 Editionprofessional

Mailenable ≫ Mailenable Version5.5 Editionprofessional

Mailenable ≫ Mailenable Version5.05 Editionprofessional

Mailenable ≫ Mailenable Version5.06 Editionprofessional

Mailenable ≫ Mailenable Version5.07 Editionprofessional

Mailenable ≫ Mailenable Version5.10 Editionprofessional

Mailenable ≫ Mailenable Version5.11 Editionprofessional

Mailenable ≫ Mailenable Version5.51 Editionprofessional

Mailenable ≫ Mailenable Version5.52 Editionprofessional

Mailenable ≫ Mailenable Version5.0 Editionenterprise

Mailenable ≫ Mailenable Version5.01 Editionenterprise

Mailenable ≫ Mailenable Version5.02 Editionenterprise

Mailenable ≫ Mailenable Version5.03 Editionenterprise

Mailenable ≫ Mailenable Version5.04 Editionenterprise

Mailenable ≫ Mailenable Version5.5 Editionenterprise

Mailenable ≫ Mailenable Version5.05 Editionenterprise

Mailenable ≫ Mailenable Version5.06 Editionenterprise

Mailenable ≫ Mailenable Version5.07 Editionenterprise

Mailenable ≫ Mailenable Version5.10 Editionenterprise

Mailenable ≫ Mailenable Version5.11 Editionenterprise

Mailenable ≫ Mailenable Version5.51 Editionenterprise

Mailenable ≫ Mailenable Version5.52 Editionenterprise

Mailenable ≫ Mailenable Version5.0 Editionpremium

Mailenable ≫ Mailenable Version5.01 Editionpremium

Mailenable ≫ Mailenable Version5.02 Editionpremium

Mailenable ≫ Mailenable Version5.03 Editionpremium

Mailenable ≫ Mailenable Version5.04 Editionpremium

Mailenable ≫ Mailenable Version5.05 Editionpremium

Mailenable ≫ Mailenable Version5.5 Editionpremium

Mailenable ≫ Mailenable Version5.06 Editionpremium

Mailenable ≫ Mailenable Version5.07 Editionpremium

Mailenable ≫ Mailenable Version5.10 Editionpremium

Mailenable ≫ Mailenable Version5.11 Editionpremium

Mailenable ≫ Mailenable Version5.51 Editionpremium

Mailenable ≫ Mailenable Version5.52 Editionpremium

Mailenable ≫ Mailenable Version6.0 Editionprofessional

Mailenable ≫ Mailenable Version6.01 Editionprofessional

Mailenable ≫ Mailenable Version6.02 Editionprofessional

Mailenable ≫ Mailenable Version6.0 Editionenterprise

Mailenable ≫ Mailenable Version6.01 Editionenterprise

Mailenable ≫ Mailenable Version6.02 Editionenterprise

Mailenable ≫ Mailenable Version6.0 Editionpremium

Mailenable ≫ Mailenable Version6.01 Editionpremium

Mailenable ≫ Mailenable Version6.02 Editionpremium

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	33.84%	0.968

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://archives.neohapsis.com/archives/bugtraq/2012-01/0090.html

Exploit

http://osvdb.org/78242

http://secunia.com/advisories/47518

Vendor Advisory

http://secunia.com/advisories/47562

Vendor Advisory

http://www.exploit-db.com/exploits/18447

http://www.mailenable.com/kb/Content/Article.asp?ID=me020567

Patch

Vendor Advisory

http://www.nerv.fi/CVE-2012-0389.txt