Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2007-1516 | 1 Cicoandcico | 1 Ccmail | 2017-10-10 | 6.8 MEDIUM | N/A |
PHP remote file inclusion vulnerability in functions/update.php in Cicoandcico CcMail 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the functions_dir parameter. | |||||
CVE-2008-1904 | 1 Cicoandcico | 1 Ccmail | 2017-09-28 | 7.5 HIGH | N/A |
Cicoandcico CcMail 1.0.1 and earlier does not verify that the this_cookie cookie corresponds to an authenticated session, which allows remote attackers to obtain access to the "admin area" via a modified this_cookie cookie. |