Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1
CVE-2019-0218
- EPSS 1.8%
- Published 22.04.2019 22:29:00
- Last modified 21.11.2024 04:16:30
A vulnerability was discovered wherein a specially crafted URL could enable reflected XSS via JavaScript in the pony mail interface.
5.3
CVE-2017-5658
- EPSS 0.92%
- Published 04.10.2018 14:29:00
- Last modified 21.11.2024 03:28:07
The statistics generator in Apache Pony Mail 0.7 to 0.9 was found to be returning timestamp data without proper authorization checks. This could lead to derived information disclosure on private lists about the timing of specific email subjects or te...
9.8
CVE-2016-4460
- EPSS 0.09%
- Published 22.08.2017 18:29:00
- Last modified 20.04.2025 01:37:25
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication.
1