VYPR
Unrated severityNVD Advisory· Published Oct 20, 2000· Updated Jun 16, 2026

CVE-2000-0716

CVE-2000-0716

Description

WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.