Vulnerabilities > Openfind > Mail2000 > 6.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-02 | CVE-2023-28705 | Cross-site Scripting vulnerability in Openfind Mail2000 6.0/7.0 Openfind Mail2000 has insufficient filtering special characters of email content of its content filtering function. | 6.1 |
| 2019-11-20 | CVE-2019-15073 | Open Redirect vulnerability in Openfind Mail2000 6.0/7.0 An Open Redirect vulnerability for all browsers in MAIL2000 through version 6.0 and 7.0, which will redirect to a malicious site without authentication. | 6.1 |
| 2019-11-20 | CVE-2019-15072 | Cross-site Scripting vulnerability in Openfind Mail2000 6.0/7.0 The login feature in "/cgi-bin/portal" in MAIL2000 through version 6.0 and 7.0 has a cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code via any parameter. | 6.1 |
| 2019-11-20 | CVE-2019-15071 | Cross-site Scripting vulnerability in Openfind Mail2000 6.0/7.0 The "/cgi-bin/go" page in MAIL2000 through version 6.0 and 7.0 has a cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code via ACTION parameter without authentication. | 6.1 |
| 2019-06-19 | CVE-2019-9763 | Cross-site Scripting vulnerability in Openfind Mail2000 6.0 An issue was discovered in Openfind Mail2000 6.0 and 7.0 Webmail. | 6.1 |