Cross-site scripting (XSS) vulnerability in PHlyMail before 3.3 Beta1 allows remote attackers to inject arbitrary Javascript via unknown attack vectors.
Max CVSS
4.3
EPSS Score
0.59%
Published
2005-12-31
Updated
2017-07-20
SQL injection vulnerability in PHlyMail 3.02.01 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
Max CVSS
6.4
EPSS Score
0.70%
Published
2005-12-31
Updated
2017-07-20
Unknown vulnerability in the "frontend authentication" in PHlyMail 3.02.00 has unknown impact and attack vectors.
Max CVSS
7.5
EPSS Score
0.41%
Published
2005-08-17
Updated
2011-03-08
3 vulnerabilities found