Kmail : Security Vulnerabilities, CVEs, CVSS score >= 3

CVE-2006-7062

calendar.php in Kamgaing Email System (kmail) 2.3 and earlier allows remote attackers to obtain the full path of the server via an invalid d parameter, which leaks the path in an error message.
Max CVSS
7.8
EPSS Score
0.55%
Published
2007-02-24
Updated
2017-07-29

CVE-2006-2104

Multiple cross-site scripting (XSS) vulnerabilities in Kamgaing Email System (kmail) 2.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) d parameter to main.php, ordner parameter to (2) main.php, or (3) webdisk.php, (4) draft parameter to compose.php, or (5) m, or (6) y parameter to calendar.php.
Max CVSS
6.8
EPSS Score
1.90%
Published
2006-04-29
Updated
2017-07-20

CVE-2005-0404

KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email.
Max CVSS
5.0
EPSS Score
3.67%
Published
2005-05-02
Updated
2008-09-05
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close