Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2007-0652

CVE information

Published

15 years ago

Last Modified

3 years ago

CVSSv2.0 Severity

Medium

Impact Analysis

Description

Cross-site request forgery (CSRF) vulnerability in MailEnable Professional before 2.37 allows remote attackers to modify arbitrary configurations and perform unauthorized actions as arbitrary users via a link or IMG tag..

CVSSv2.0 Score

Severity
Medium
Base Score
5.1/10
Exploit Score
4.9/10
Access Vector
Network
Access Complexity
High
Authentication Required
None
Impact Score
6.4/10
Confidentiality Impact
Partial
Availability Impact
Partial
Integrity Impact
Partial

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:a:mailenable:mailenable_professional:1.107:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.14:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.33:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.101:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.52:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.15:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.115:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.17:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.106:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.005:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.102:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.103:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.111:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.5:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.83:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.006:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.007:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.114:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.008:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.016:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.108:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.116:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.18:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.19:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.7:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.011:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.72:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.004:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.012:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.013:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.112:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.51:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.82:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.34:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.35:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.014:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.015:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.104:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.105:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.113:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.16:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.53:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.54:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.84:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.0:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.351:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.009:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.017:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.6:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.1:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.2:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.0.010:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.1:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.109:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.110:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.12:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.13:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.2:*:*:*:*:*:*
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.2a:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:1.73:*:*:*:*:*:
  Yes
- -
cpe:2.3:a:mailenable:mailenable_professional:2.32:*:*:*:*:*:
  Yes
- -