Filtered by vendor Mail.ru
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2016-10716 | 1 Mail.ru | 1 Calendar | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
The Mail.ru Calendar plugin before 2.5.0.61 for Atlassian Jira has XSS via the Name field in a Create Calender action, related to a MailRuCalendar.jspa#period/month URI. | |||||
CVE-2014-5804 | 1 Mail.ru | 1 Mail.ru Dating | 2024-11-21 | 5.4 MEDIUM | N/A |
The Mail.Ru Dating (aka ru.mail.love) application 3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |