Vulnerabilities > Emumail > EMU Webmail > 5.2.7
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-12-31 | CVE-2004-2385 | Multiple vulnerability in Emumail EMU Webmail 5.2.7 EMU Webmail 5.2.7 allows remote attackers to obtain sensitive path information (home directory) via an HTTP request for init.emu. | 5.0 |
2004-12-31 | CVE-2004-2334 | Multiple vulnerability in Emumail EMU Webmail 5.2.7 Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote attackers to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail.fcgi, (2) the folder parameter in emumail.fcgi, or Javascript in the (3) username or (4) password field in the login page. network emumail | 4.3 |