Vulnerabilities > Woppoware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-05-18 | CVE-2005-1653 | Input Validation and Information Disclosure vulnerability in Woppoware Postmaster 4.2.2Build3.2.5 Cross-site scripting (XSS) vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to inject arbitrary web script or HTML via the email parameter. network woppoware | 6.8 |
2005-05-18 | CVE-2005-1652 | Input Validation and Information Disclosure vulnerability in Woppoware Postmaster 4.2.2Build3.2.5 message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to bypass authentication by modifying the email parameter. | 7.5 |
2005-05-18 | CVE-2005-1651 | Input Validation and Information Disclosure vulnerability in Woppoware Postmaster 4.2.2Build3.2.5 Directory traversal vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to determine the existence of arbitrary files via a .. | 7.5 |