Vulnerabilities (CVE)

Filtered by vendor Joruri Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-5967 1 Joruri 1 Joruri Cms 2017 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in Joruri CMS 2017 Release2 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2019-5966 1 Joruri 1 Joruri Mail 2024-11-21 5.8 MEDIUM 5.4 MEDIUM
Joruri Mail 2.1.4 and earlier does not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and alter/disclose the information via unspecified vectors.
CVE-2019-5965 1 Joruri 1 Joruri Mail 2024-11-21 5.8 MEDIUM 6.1 MEDIUM
Open redirect vulnerability in Joruri Mail 2.1.4 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.