cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2010-4456,https://securityvulnerability.io/vulnerability/CVE-2010-4456,,Unspecified vulnerability in Oracle Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to affect integrity via unknown vectors related to Web Mail.,Oracle,Java System Communications Express,,,0.003640000009909272,false,false,false,false,,false,false,2011-01-19T16:00:00.000Z,0
CVE-2010-1227,https://securityvulnerability.io/vulnerability/CVE-2010-1227,,"Cross-site scripting (XSS) vulnerability in Sun Java System Communications Express 6.2 and 6.3 allows remote attackers to inject arbitrary web script or HTML via the subject field of a message, as demonstrated by a subject containing an IMG element with a SRC attribute that performs a cross-site request forgery (CSRF) attack involving the cmd and argv parameters to cmd.msc.",Oracle,Java System Communications Express,,,0.00215999991632998,false,false,false,false,,false,false,2010-04-01T22:00:00.000Z,0
CVE-2009-1729,https://securityvulnerability.io/vulnerability/CVE-2009-1729,,Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Communications Express 6 2005Q4 (aka 6.2) and 6.3 allow remote attackers to inject arbitrary web script or HTML via (1) the abperson_displayName parameter to uwc/abs/search.xml in the Add Contact implementation in the Personal Address Book component or (2) the temporaryCalendars parameter to uwc/base/UWCMain.,Oracle,Java System Communications Express,,,0.45184001326560974,false,false,false,false,,false,false,2009-05-21T14:00:00.000Z,0
CVE-2009-0877,https://securityvulnerability.io/vulnerability/CVE-2009-0877,,Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Communications Express allow remote attackers to inject arbitrary web script or HTML via the (1) Full Name or (2) Subject field.,Oracle,Java System Communications Express,,,0.003809999907389283,false,false,false,false,,false,false,2009-03-12T15:00:00.000Z,0
CVE-2005-3472,https://securityvulnerability.io/vulnerability/CVE-2005-3472,,Unspecified vulnerability in Sun Java System Communications Express 2005Q1 and 2004Q2 allows local and remote attackers to read sensitive information from configuration files.,Oracle,Java System Communications Express,,,0.01745999976992607,false,false,false,false,,false,false,2005-11-03T02:00:00.000Z,0