2 results (0.011 seconds)
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1CVE-2000-0397 – Seattle Lab Software Emurl 2.0 - Email Account Access
https://notcve.org/view.php?id=CVE-2000-0397
The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. • https://www.exploit-db.com/exploits/19914 http://archives.neohapsis.com/archives/bugtraq/2000-05/0160.html http://www.securityfocus.com/bid/1203 •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-1999-1017
https://notcve.org/view.php?id=CVE-1999-1017
Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. • http://marc.info/?l=ntbugtraq&m=93316253431588&w=2 http://www.securityfocus.com/bid/544 •