Vulnerabilities > Kmail > Kmail > 1.7.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-04-29 | CVE-2006-2104 | Cross-Site Scripting vulnerability in Kmail 1.7.1 Multiple cross-site scripting (XSS) vulnerabilities in Kamgaing Email System (kmail) 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) d parameter to main.php, ordner parameter to (2) main.php, or (3) webdisk.php, (4) draft parameter to compose.php, or (5) m, or (6) y parameter to calendar.php. network kmail | 6.8 |
2005-05-02 | CVE-2005-0404 | KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email. | 5.0 |