Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2002-0411
- EPSS 1.08%
- Published 12.08.2002 04:00:00
- Last modified 03.04.2025 01:03:51
Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.
- EPSS 1.76%
- Published 26.07.2002 04:00:00
- Last modified 03.04.2025 01:03:51
send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded.
1