Aeromail
by Aeromail
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-0411 | 0.00 | — | 0.03 | Aug 12, 2002 | Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line. | |||
| CVE-2002-0410 | 0.00 | — | 0.03 | Jul 26, 2002 | send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded. |
- CVE-2002-0411Aug 12, 2002risk 0.00cvss —epss 0.03
Cross-site scripting vulnerability in message.php for AeroMail before 1.45 allows remote attackers to execute Javascript as an AeroMail user via an email message with the script in the Subject line.
- CVE-2002-0410Jul 26, 2002risk 0.00cvss —epss 0.03
send_message.php in AeroMail before 1.45 allows remote attackers to read arbitrary files on the server, instead of just uploaded files, via an attachment that modifies the filename to be uploaded.