Searching subject software vulnerabilities

mailto.exe in Brian Dorricott MAILTO 1.0.9 and

Dorricott | mailtoexe | MAILTO | Brian |

mailto.exe in Brian Dorricott MAILTO 1.0.9 and earlier allows remote attackers to send SPAM e-mail through remote servers by modifying the sendto, email, server, subject, and resulturl hidden form fields.


Cross-site scripting vulnerability in message.p

vulnerability | messagephp | Cross-site | scripting | AeroMail | before |

Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.


Ultrafunk Popcorn 1.20 allows remote attackers

Ultrafunk | Popcorn |

Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Subject ("\t\t").


Buffer overflow in Ultrafunk Popcorn 1.20 allow

Ultrafunk | overflow | Popcorn | Buffer |

Buffer overflow in Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Subject field.


Cross-site request forgery (CSRF) vulnerability

Cross-site | forgery | request |

Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail before 1.2.3 allows remote attackers to send email as other users via an IMG URL with modified send_to and subject parameters.


Cross-site scripting vulnerability (XSS) in Bas

vulnerability | Cross-site | scripting |

Cross-site scripting vulnerability (XSS) in BasiliX Webmail 1.10 allows remote attackers to execute arbitrary script as other users by injecting script into the (1) subject or (2) message fields.


CRLF injection vulnerability in the "User Profi

vulnerability | injection | "User | CRLF |

CRLF injection vulnerability in the "User Profile: Send Email" feature in Geeklog 1.35 and 1.3.5sr1 allows remote attackers to obtain e-mail addresses by injecting a CRLF into the Subject field and adding a BCC mail header.


Cross-site scripting (XSS) vulnerability in kmM

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in kmMail 1.0 through 1.0b allows remote attackers to inject arbitrary web script or HTML via (1) an e-mail message subject or (2) Javascript in "safe" tags.


Integer signedness errors in the POP3 client fo

signedness | Mirabilis | arbitrary | attackers | Integer | execute | remote | client | errors | allow | 2003a | POP3 | code | via | ICQ | Pro |

Integer signedness errors in the POP3 client for Mirabilis ICQ Pro 2003a allow remote attackers to execute arbitrary code via the (1) Subject or (2) Date headers.


Cross-site scripting (XSS) vulnerability in Spl

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in Splatt Forum allows remote attackers to insert arbitrary HTML and web script via the post icon (image_subject) field.


Mailman before 2.0.13 allows remote attackers t

Mailman | before |

Mailman before 2.0.13 allows remote attackers to cause a denial of service (crash) via an email message with an empty subject field.


Cross-site scripting (XSS) vulnerability in the

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in the compose message form in HELM 3.1.19 and earlier allows remote attackers to execute arbitrary web script or HTML via the Subject field.


Post.pl in YaBB 1 Gold SP 1.2 allows remote att

characters | attackers | carriage | subject | records | board's | return | Postpl | allows | modify | remote | field | YaBB | file | Gold | txt | via |

Post.pl in YaBB 1 Gold SP 1.2 allows remote attackers to modify records in the board's .txt file via carriage return characters in the subject field.


Buffer overflow in the ssl_prcert function in t

ssl_prcert | function | overflow | filter | SSLway | Buffer |

Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in index.jsp for Liferay before 2.2.0 release 10/1/2004 allow remote attackers to inject abitrary web script or HTML, as demonstrated using the message subject.


CRLF injection vulnerability in YaBB 1 Gold bef

vulnerability | injection | before | Gold | CRLF | YaBB |

CRLF injection vulnerability in YaBB 1 Gold before 1.3.2 allows remote attackers to modify text file contents via the subject variable.


Cross-site scripting (XSS) vulnerability in sea

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in search.php in Phorum, possibly 5.0.7 beta and earlier, allows remote attackers to inject arbitrary HTML or web script via the subject parameter.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in Phorum before 5.0.15 allow remote attackers to inject arbitrary web script or HTML via (1) the subject line to follow.php or (2) the subject line in the user's personal control panel.


Buffer overflow in RITLabs The Bat! 3.60.07 all

overflow | RITLabs | Buffer | Bat |

Buffer overflow in RITLabs The Bat! 3.60.07 allows remote attackers to execute arbitrary code via a long Subject field.


Multiple cross-site scripting (XSS) vulnerabili

cross-site | scripting | Multiple |

Multiple cross-site scripting (XSS) vulnerabilities in e107 0.7.5 allow remote attackers to inject arbitrary web script or HTML via the (1) ep parameter to search.php and the (2) subject parameter in comment.php (aka the Subject field when posting a comment).


Software vulnerabilities results 1 to 20 of 103     
Page: 123456