Every CVE whose affected-product data names Cascadesoft W3mail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2002-2399 — CVSS 6.4 (medium): Directory traversal vulnerability in viewAttachment.cgi in W3Mail 1.0.6 allows remote attackers to read arbitrary files via a .. (dot dot)…
CVE-2002-2331 — CVSS 5.8 (medium): W3Mail 1.0.2 through 1.0.5 with server side scripting (SSI) enabled in the attachments directory does not properly restrict the types of…