Skip to main content

Pony Mail

2 CVEs product

Monthly

CVE-2019-0218 MEDIUM This Month

A vulnerability was discovered wherein a specially crafted URL could enable reflected XSS via JavaScript in the pony mail interface. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Pony Mail
NVD
CVSS 3.0
6.1
EPSS
5.1%
CVE-2016-4460 CRITICAL PATCH Act Now

Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Apache Pony Mail
NVD
CVSS 3.0
9.8
EPSS
1.1%
EPSS 5% CVSS 6.1
MEDIUM This Month

A vulnerability was discovered wherein a specially crafted URL could enable reflected XSS via JavaScript in the pony mail interface. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Pony Mail
NVD
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Apache Pony Mail
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy