CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-1120

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.0120%
EPSS Percentile27.62th
Published2005年5月2日
Last Modified2026年4月16日

Vulnerability Description

Multiple cross-site scripting (XSS) vulnerabilities in IlohaMail 0.8.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the e-mail (1) body, (2) filename, or (3) MIME type.

Affected Platforms (CPE)

📦
Ilohamail

Ilohamail

= 0.7.0
📦
Ilohamail

Ilohamail

= 0.7.1
📦
Ilohamail

Ilohamail

= 0.7.2
📦
Ilohamail

Ilohamail

= 0.7.3
📦
Ilohamail

Ilohamail

= 0.7.4
📦
Ilohamail

Ilohamail

= 0.7.4.2
📦
Ilohamail

Ilohamail

= 0.7.5
📦
Ilohamail

Ilohamail

= 0.7.6
📦
Ilohamail

Ilohamail

= 0.7.7
📦
Ilohamail

Ilohamail

= 0.7.8
📦
Ilohamail

Ilohamail

= 0.7.9
📦
Ilohamail

Ilohamail

= 0.8.6
📦
Ilohamail

Ilohamail

= 0.8.7
📦
Ilohamail

Ilohamail

= 0.8.8
📦
Ilohamail

Ilohamail

= 0.8.9
📦
Ilohamail

Ilohamail

= 0.8.10
📦
Ilohamail

Ilohamail

= 0.8.11
📦
Ilohamail

Ilohamail

= 0.8.12
📦
Ilohamail

Ilohamail

= 0.8.13
📦
Ilohamail

Ilohamail

= 0.8.14_rc1
📦
Ilohamail

Ilohamail

= 0.8.14_rc2

References & Advisories

🔗 http://secunia.com/advisories/14957
🔗 http://secunia.com/advisories/19266
🔗 http://securitytracker.com/id?1013701
🔗 http://www.debian.org/security/2006/dsa-1010
🔗 http://www.osvdb.org/15506
🔗 http://www.securityfocus.com/bid/13175
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/20095
🔗 http://secunia.com/advisories/14957

相關漏洞威脅

CVE-2004-250010.0

Unknown vulnerability in IlohaMail before 0.8.14-rc1 has unknown impact and attack vectors.

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-063510.0

Buffer overflow in Foxmail Server 2.0 allows remote attackers to execute arbitrary code via a long USER command.

CVE-2005-473010.0

Unspecified vulnerability in PEAR Text_Password 1.0 has unknown impact and attack vectors, related to "problematic seeding" of the...