CVE-2012-0389

Exploit

EPSS 8.42%
Veröffentlicht 24.01.2012 18:55:01
Zuletzt bearbeitet 16.06.2026 23:37:11
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Username parameter.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 13

NVD 159 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mailenable ≫ Mailenable Update- Editionpro Version <= 4.26

Mailenable ≫ Mailenable Version1.2 Editionprofessional

Mailenable ≫ Mailenable Version1.2a Editionprofessional

Mailenable ≫ Mailenable Version1.5 Editionprofessional

Mailenable ≫ Mailenable Version1.6 Editionprofessional

Mailenable ≫ Mailenable Version1.7 Editionprofessional

Mailenable ≫ Mailenable Version1.17 Editionprofessional

Mailenable ≫ Mailenable Version1.18 Editionprofessional

Mailenable ≫ Mailenable Version1.19 Editionprofessional

Mailenable ≫ Mailenable Version1.51 Editionprofessional

Mailenable ≫ Mailenable Version1.52 Editionprofessional

Mailenable ≫ Mailenable Version1.53 Editionprofessional

Mailenable ≫ Mailenable Version1.54 Editionprofessional

Mailenable ≫ Mailenable Version1.70 Editionprofessional

Mailenable ≫ Mailenable Version1.71 Editionprofessional

Mailenable ≫ Mailenable Version1.72 Editionprofessional

Mailenable ≫ Mailenable Version1.73 Editionprofessional

Mailenable ≫ Mailenable Version1.74 Editionprofessional

Mailenable ≫ Mailenable Version1.75 Editionprofessional

Mailenable ≫ Mailenable Version1.76 Editionprofessional

Mailenable ≫ Mailenable Version1.77 Editionprofessional

Mailenable ≫ Mailenable Version1.78 Editionprofessional

Mailenable ≫ Mailenable Version1.79 Editionprofessional

Mailenable ≫ Mailenable Version3.0 Update- Editionpro

Mailenable ≫ Mailenable Version3.01 Update- Editionpro

Mailenable ≫ Mailenable Version3.02 Update- Editionpro

Mailenable ≫ Mailenable Version3.03 Update- Editionpro

Mailenable ≫ Mailenable Version3.04 Update- Editionpro

Mailenable ≫ Mailenable Version3.5 Update- Editionpro

Mailenable ≫ Mailenable Version3.6 Update- Editionpro

Mailenable ≫ Mailenable Version3.10 Update- Editionpro

Mailenable ≫ Mailenable Version3.11 Update- Editionpro

Mailenable ≫ Mailenable Version3.12 Update- Editionpro

Mailenable ≫ Mailenable Version3.13 Update- Editionpro

Mailenable ≫ Mailenable Version3.14 Update- Editionpro

Mailenable ≫ Mailenable Version3.51 Update- Editionpro

Mailenable ≫ Mailenable Version3.52 Editionprofessional

Mailenable ≫ Mailenable Version3.52 Update- Editionpro

Mailenable ≫ Mailenable Version3.53 Update- Editionpro

Mailenable ≫ Mailenable Version3.61 Update- Editionpro

Mailenable ≫ Mailenable Version3.62 Update- Editionpro

Mailenable ≫ Mailenable Version3.63 Update- Editionpro

Mailenable ≫ Mailenable Version4.0 Update- Editionpro

Mailenable ≫ Mailenable Version4.1 Update- Editionpro

Mailenable ≫ Mailenable Version4.01 Update- Editionpro

Mailenable ≫ Mailenable Version4.11 Update- Editionpro

Mailenable ≫ Mailenable Version4.12 Update- Editionpro

Mailenable ≫ Mailenable Version4.13 Update- Editionpro

Mailenable ≫ Mailenable Version4.14 Update- Editionpro

Mailenable ≫ Mailenable Version4.15 Update- Editionpro

Mailenable ≫ Mailenable Version4.16 Update- Editionpro

Mailenable ≫ Mailenable Version4.17 Update- Editionpro

Mailenable ≫ Mailenable Version4.22 Update- Editionpro

Mailenable ≫ Mailenable Version4.23 Update- Editionpro

Mailenable ≫ Mailenable Version4.24 Update- Editionpro

Mailenable ≫ Mailenable Version4.25 Update- Editionpro

Mailenable ≫ Mailenable Update- Editionenterprise Version <= 4.26

Mailenable ≫ Mailenable Version1.00 Editionenterprise

Mailenable ≫ Mailenable Version1.1 Editionenterprise

Mailenable ≫ Mailenable Version1.01 Editionenterprise

Mailenable ≫ Mailenable Version1.02 Editionenterprise

Mailenable ≫ Mailenable Version1.2 Editionenterprise

Mailenable ≫ Mailenable Version1.03 Editionenterprise

Mailenable ≫ Mailenable Version1.04 Editionenterprise

Mailenable ≫ Mailenable Version1.21 Editionenterprise

Mailenable ≫ Mailenable Version1.22 Editionenterprise

Mailenable ≫ Mailenable Version1.23 Editionenterprise

Mailenable ≫ Mailenable Version1.24 Editionenterprise

Mailenable ≫ Mailenable Version1.25 Editionenterprise

Mailenable ≫ Mailenable Version1.26 Editionenterprise

Mailenable ≫ Mailenable Version3.0 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.01 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.02 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.03 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.04 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.5 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.6 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.10 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.11 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.12 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.13 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.14 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.51 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.52 Editionenterprise

Mailenable ≫ Mailenable Version3.52 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.53 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.61 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.62 Update- Editionenterprise

Mailenable ≫ Mailenable Version3.63 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.0 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.01 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.1 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.11 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.12 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.13 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.14 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.15 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.16 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.17 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.22 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.23 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.24 Update- Editionenterprise

Mailenable ≫ Mailenable Version4.25 Update- Editionenterprise

Mailenable ≫ Mailenable Editionpremium Version <= 4.26

Mailenable ≫ Mailenable Version4.1 Editionpremium

Mailenable ≫ Mailenable Version4.2 Editionpremium

Mailenable ≫ Mailenable Version4.21 Editionpremium

Mailenable ≫ Mailenable Version4.22 Editionpremium

Mailenable ≫ Mailenable Version4.23 Editionpremium

Mailenable ≫ Mailenable Version4.24 Editionpremium

Mailenable ≫ Mailenable Version4.25 Editionpremium

Mailenable ≫ Mailenable Version5.0 Editionprofessional

Mailenable ≫ Mailenable Version5.01 Editionprofessional

Mailenable ≫ Mailenable Version5.02 Editionprofessional

Mailenable ≫ Mailenable Version5.03 Editionprofessional

Mailenable ≫ Mailenable Version5.04 Editionprofessional

Mailenable ≫ Mailenable Version5.5 Editionprofessional

Mailenable ≫ Mailenable Version5.05 Editionprofessional

Mailenable ≫ Mailenable Version5.06 Editionprofessional

Mailenable ≫ Mailenable Version5.07 Editionprofessional

Mailenable ≫ Mailenable Version5.10 Editionprofessional

Mailenable ≫ Mailenable Version5.11 Editionprofessional

Mailenable ≫ Mailenable Version5.51 Editionprofessional

Mailenable ≫ Mailenable Version5.52 Editionprofessional

Mailenable ≫ Mailenable Version5.0 Editionenterprise

Mailenable ≫ Mailenable Version5.01 Editionenterprise

Mailenable ≫ Mailenable Version5.02 Editionenterprise

Mailenable ≫ Mailenable Version5.03 Editionenterprise

Mailenable ≫ Mailenable Version5.04 Editionenterprise

Mailenable ≫ Mailenable Version5.5 Editionenterprise

Mailenable ≫ Mailenable Version5.05 Editionenterprise

Mailenable ≫ Mailenable Version5.06 Editionenterprise

Mailenable ≫ Mailenable Version5.07 Editionenterprise

Mailenable ≫ Mailenable Version5.10 Editionenterprise

Mailenable ≫ Mailenable Version5.11 Editionenterprise

Mailenable ≫ Mailenable Version5.51 Editionenterprise

Mailenable ≫ Mailenable Version5.52 Editionenterprise

Mailenable ≫ Mailenable Version5.0 Editionpremium

Mailenable ≫ Mailenable Version5.01 Editionpremium

Mailenable ≫ Mailenable Version5.02 Editionpremium

Mailenable ≫ Mailenable Version5.03 Editionpremium

Mailenable ≫ Mailenable Version5.04 Editionpremium

Mailenable ≫ Mailenable Version5.05 Editionpremium

Mailenable ≫ Mailenable Version5.5 Editionpremium

Mailenable ≫ Mailenable Version5.06 Editionpremium

Mailenable ≫ Mailenable Version5.07 Editionpremium

Mailenable ≫ Mailenable Version5.10 Editionpremium

Mailenable ≫ Mailenable Version5.11 Editionpremium

Mailenable ≫ Mailenable Version5.51 Editionpremium

Mailenable ≫ Mailenable Version5.52 Editionpremium

Mailenable ≫ Mailenable Version6.0 Editionprofessional

Mailenable ≫ Mailenable Version6.01 Editionprofessional

Mailenable ≫ Mailenable Version6.02 Editionprofessional

Mailenable ≫ Mailenable Version6.0 Editionenterprise

Mailenable ≫ Mailenable Version6.01 Editionenterprise

Mailenable ≫ Mailenable Version6.02 Editionenterprise

Mailenable ≫ Mailenable Version6.0 Editionpremium

Mailenable ≫ Mailenable Version6.01 Editionpremium

Mailenable ≫ Mailenable Version6.02 Editionpremium

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	8.42%	0.943

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://archives.neohapsis.com/archives/bugtraq/2012-01/0090.html

Exploit

http://osvdb.org/78242

http://secunia.com/advisories/47518

Vendor Advisory

http://secunia.com/advisories/47562

Vendor Advisory

http://www.exploit-db.com/exploits/18447

http://www.mailenable.com/kb/Content/Article.asp?ID=me020567

Patch

Vendor Advisory

http://www.nerv.fi/CVE-2012-0389.txt

Exploit

http://www.securityfocus.com/bid/51401

Exploit

http://www.securitytracker.com/id?1026519

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/72380

https://nvd.nist.gov/vuln/detail/CVE-2012-0389

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-0389

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-0389

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2012-0389