Alex Kellner Powermail — known CVE vulnerabilities
Every CVE whose affected-product data names Alex Kellner Powermail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2010-0329 — CVSS 7.5 (high): SQL injection vulnerability in the powermail extension 1.5.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL…
CVE-2010-3604 — CVSS 7.5 (high): SQL injection vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL…
CVE-2014-3947 — CVSS 7.5 (high): Unrestricted file upload vulnerability in the powermail extension before 1.6.11 and 2.x before 2.0.14 for TYPO3 allows remote attackers to…
CVE-2014-6288 — CVSS 7.5 (high): The powermail extension 2.x before 2.0.11 for TYPO3 allows remote attackers to bypass the CAPTCHA protection mechanism via unspecified…
CVE-2010-3687 — CVSS 5.0 (medium): Unspecified vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to bypass validation have an…
CVE-2010-4892 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the powermail extension before 1.5.5 for TYPO3 allows remote attackers to inject arbitrary web…
CVE-2012-5889 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the powermail extension before 1.6.5 for TYPO3 allows remote attackers to inject arbitrary web…
CVE-2014-3948 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the HTML export wizard in the backend module in the powermail extension before 1.6.11 for TYPO3…
CVE-2010-3605 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to inject arbitrary…