Every CVE whose affected-product data names In2code Powermail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2024-45233 — CVSS 9.8 (critical): An issue was discovered in powermail extension through 12.3.5 for TYPO3. Several actions in the OutputController can directly be called…
CVE-2024-47047 — CVSS 7.5 (high): An issue was discovered in the powermail extension through 12.4.0 for TYPO3. It fails to validate the mail parameter of the createAction…
CVE-2024-45232 — CVSS 5.3 (medium): An issue was discovered in powermail extension through 12.3.5 for TYPO3. It fails to validate the mail parameter of the confirmationAction…
CVE-2008-2182 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the powermail extension before 1.1.10 for TYPO3 allows remote attackers to inject arbitrary web…