Acc Php Email

acc_php_email

Vendor: Accscripts • 2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-4906 1Accscripts 1Acc Php Email Apr 29, 2026 Jun 25, 2010 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability in index.php in Acc PHP eMail 1.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords.
CVE-2008-6291 1Accscripts 1Acc Php Email Apr 23, 2026 Feb 26, 2009 N/A· v4 N/A· v3 7.5 HIGH· v2 Acc PHP eMail 1.1 allows remote attackers to bypass authentication and gain administrative access by setting the NEWSLETTERLOGIN cookie to "admin".