Vulnerabilities > Instant WEB Mail > Instant WEB Mail > 0.55
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-08-12 | CVE-2002-0490 | Unspecified vulnerability in Instant web Mail Instant web Mail Instant Web Mail before 0.60 does not properly filter CR/LF sequences, which allows remote attackers to (1) execute arbitrary POP commands via the id parameter in message.php, or (2) modify certain mail message headers via numerous parameters in write.php. | 10.0 |