VYPR

Dada Mail

by Dada Mail

CVEs (3)

  • CVE-2008-6221Feb 20, 2009
    risk 0.05cvss epss 0.28

    PHP remote file inclusion vulnerability in config.dadamail.php in the Dada Mail Manager (com_dadamail) component 2.6 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[mosConfig_absolute_path] parameter.

  • CVE-2021-41083HigSep 20, 2021
    risk 0.00cvss 8.0epss 0.00

    Dada Mail is a web-based e-mail list management system. In affected versions a bad actor could give someone a carefully crafted web page via email, SMS, etc, that - when visited, allows them control of the list control panel as if the bad actor was logged in themselves. This…

  • CVE-2005-2595Aug 17, 2005
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.