Vulnerabilities > DAJ > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-17 | CVE-2023-22278 | Unspecified vulnerability in DAJ M-Filter 4.0/5.0 m-FILTER prior to Ver.5.70R01 (Ver.5 Series) and m-FILTER prior to Ver.4.87R04 (Ver.4 Series) allows a remote unauthenticated attacker to bypass authentication and send users' unintended email when email is being sent under the certain conditions. | 5.3 |
| 2019-01-09 | CVE-2018-16181 | HTTP Response Splitting vulnerability in DAJ I-Filter 9.50R05 HTTP header injection vulnerability in i-FILTER Ver.9.50R05 and earlier may allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks that may result in an arbitrary script injection or setting an arbitrary cookie values via unspecified vectors. | 6.1 |
| 2019-01-09 | CVE-2018-16180 | Cross-site Scripting vulnerability in DAJ I-Filter 9.50R05 Cross-site scripting vulnerability in i-FILTER Ver.9.50R05 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 6.1 |