2 results (0.004 seconds)

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1

The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. • https://www.exploit-db.com/exploits/19914 http://archives.neohapsis.com/archives/bugtraq/2000-05/0160.html http://www.securityfocus.com/bid/1203 •

CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0

Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. • http://marc.info/?l=ntbugtraq&m=93316253431588&w=2 http://www.securityfocus.com/bid/544 •