CVE-2005-2595

Name: CVE-2005-2595
Creator: NVD / NIST
Published: 2005-08-17T04:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.16%

Last modified Jun 16, 2026

CVE-2005-2595 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.. EPSS estimates a 1.16% chance of exploitation in the next 30 days.

Description

Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.

Metrics

EPSS Probability

1.16%

63.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Dada Mail	Dada Mail	2.8.10
Dada Mail	Dada Mail	2.8.11
Dada Mail	Dada Mail	2.8.12
Dada Mail	Dada Mail	2.8.12_beta
Dada Mail	Dada Mail	2.8.13
Dada Mail	Dada Mail	2.8.13_alpha1
Dada Mail	Dada Mail	2.8.13_alpha2
Dada Mail	Dada Mail	2.8.14_alpha1
Dada Mail	Dada Mail	2.8.14_beta1
Dada Mail	Dada Mail	2.8.14_rc1
Dada Mail	Dada Mail	2.8.14_rc2
Dada Mail	Dada Mail	2.8.15
Dada Mail	Dada Mail	2.8.15_alpha1
Dada Mail	Dada Mail	2.8.15_beta1
Dada Mail	Dada Mail	2.8.15_rc1
Dada Mail	Dada Mail	2.8.16_alpha1
Dada Mail	Dada Mail	2.8.16_alpha2
Dada Mail	Dada Mail	2.8.16_alpha3
Dada Mail	Dada Mail	2.8.16_alpha4
Dada Mail	Dada Mail	2.9.0
Dada Mail	Dada Mail	2.9.0_beta1
Dada Mail	Dada Mail	2.9.0_beta2
Dada Mail	Dada Mail	2.9.0_rc1
Dada Mail	Dada Mail	2.9.1
Dada Mail	Dada Mail	2.9.2

References

http://mojo.skazat.com/download/testing_2_10_0_alpha1.htmlPatch
http://secunia.com/advisories/16435Patch, Vendor Advisory
http://www.securityfocus.com/bid/14573
http://mojo.skazat.com/download/testing_2_10_0_alpha1.htmlPatch
http://secunia.com/advisories/16435Patch, Vendor Advisory
http://www.securityfocus.com/bid/14573

Timeline

Published: Aug 17, 2005
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2005-2595?

Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.

How severe is CVE-2005-2595?

Severity scoring for CVE-2005-2595 is pending analysis. The EPSS model estimates a 1.16% probability of exploitation in the next 30 days.

How do I fix CVE-2005-2595?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2005-2595?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST