Vulnerabilities (CVE)

Filtered by vendor Kde Subscribe
Filtered by product Kde Pim
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-3413 1 Kde 1 Kde Pim 2024-11-21 4.3 MEDIUM N/A
The HTMLQuoteColorer::process function in messageviewer/htmlquotecolorer.cpp in KDE PIM 4.6 through 4.8 does not disable JavaScript, Java, and Plugins, which allows remote attackers to inject arbitrary web script or HTML via a crafted email.