Rockliffe Mailsite Express — known CVE vulnerabilities
Every CVE whose affected-product data names Rockliffe Mailsite Express, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2005-3430 — CVSS 7.5 (high): Incomplete blacklist vulnerability in Rockliffe MailSite Express before 6.1.22 allows remote attackers to upload and execute arbitrary…
CVE-2005-3287 — CVSS 5.0 (medium): Incomplete blacklist vulnerability in Mailsite Express allows remote attackers to upload and possibly execute files via attachments with…
CVE-2005-3288 — CVSS 5.0 (medium): Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the…
CVE-2005-3431 — CVSS 5.0 (medium): Absolute path traversal vulnerability in Rockliffe MailSite Express before 6.1.22 allows remote attackers to read arbitrary files via a…
CVE-2005-3428 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Rockliffe MailSite Express before 6.1.22 allows remote attackers to inject arbitrary web script…
CVE-2005-3429 — CVSS 4.3 (medium): Rockliffe MailSite Express before 6.1.22, with the option to save login information enabled, saves user passwords in plaintext in cookies…