Vulmon
Recent Vulnerabilities
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
mailform vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-5553
mailform version 1.04 allows remote attackers to execute arbitrary PHP code via unspecified vectors....
Mailform Mailform 1.04
383
VMScore
CVE-2009-4706
Cross-site scripting (XSS) vulnerability in the Mailform (mailform) extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Sebastian Winterhalder Mailform 0.9.10
Sebastian Winterhalder Mailform 0.9.12
Sebastian Winterhalder Mailform 0.9.13
Sebastian Winterhalder Mailform 0.9.14
Sebastian Winterhalder Mailform
NA
CVE-2020-5552
Cross-site scripting vulnerability in mailform version 1.04 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
Mailform Mailform 1.04
383
VMScore
CVE-2014-3894
Cross-site scripting (XSS) vulnerability in PHP Kobo Multifunctional MailForm Free 2014/1/28 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer header....
Php Kobo Multifunctional Mailform Free
605
VMScore
CVE-2015-0883
SYNCK GRAPHICA Mailform Pro CGI 4.1.4 and 4.1.5, when the mailauth module is enabled, does not properly send e-mail messages, which allows remote attackers to execute arbitrary code via unspecified vectors....
Synck Graphica Mailform Pro Cgi 4.1.4
Synck Graphica Mailform Pro Cgi 4.1.5
755
VMScore
CVE-2010-4939
PHP remote file inclusion vulnerability in index.php in MailForm 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter....
Scripts.bdr130 Mailform 1.2
1 EDB exploit available
445
VMScore
CVE-2000-0877
mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker....
Ranson Johnson Mailform 2.0
383
VMScore
CVE-2007-6751
Cross-site scripting (XSS) vulnerability in the MailForm plugin before 1.20 for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors....
H-fj Mailform Plugin 1.00
H-fj Mailform Plugin 1.10
H-fj Mailform Plugin
605
VMScore
CVE-2007-0610
Cross-site scripting (XSS) vulnerability in the mailform feature in CMSimple 2.7 fix1 allows remote attackers to inject arbitrary web script or HTML via the sender parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party...
Cmsmadesimple Cms Made Simple 2.7
605
VMScore
CVE-2018-14268
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-3691
insecure direct object reference
CVE-2021-1140
CVE-2021-2109
information disclosure
CVE-2021-1303
CVE-2021-1304
IDOR
CVE-2020-14882