Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2001-1257
- EPSS 1.41%
- Published 21.07.2001 04:00:00
- Last modified 03.04.2025 01:03:51
Cross-site scripting vulnerability in Horde Internet Messaging Program (IMP) before 2.2.6 and 1.2.6 allows remote attackers to execute arbitrary Javascript embedded in an email.
- EPSS 0.5%
- Published 19.12.2000 05:00:00
- Last modified 03.04.2025 01:03:51
IMP 2.2 and earlier allows attackers to read and delete arbitrary files by modifying the attachment_name hidden form variable, which causes IMP to send the file to the attacker as an attachment.