Lucene search
K

IceWarp Mail Server - Open Redirect

🗓️ 07 Jul 2026 16:50:48Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 70 Views

IceWarp Mail Server contains an open redirect vulnerability via the referer parameter, allowing attackers to redirect users to malicious websites

Related
Refs
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2021-36580
27 Jul 202318:15
attackerkb
Circl
CVE-2021-36580
27 Apr 202309:58
circl
CNNVD
IceWarp Mail Server 输入验证错误漏洞
27 Jul 202300:00
cnnvd
CVE
CVE-2021-36580
27 Jul 202300:00
cve
Cvelist
CVE-2021-36580
27 Jul 202300:00
cvelist
EUVD
EUVD-2021-23177
7 Oct 202500:30
euvd
NVD
CVE-2021-36580
27 Jul 202318:15
nvd
OSV
CVE-2021-36580
27 Jul 202318:15
osv
Prion
Open redirect
27 Jul 202318:15
prion
Positive Technologies
PT-2023-12292 · Icewarp · Icewarp Mail Server
27 Jul 202300:00
ptsecurity
Rows per page
id: CVE-2021-36580

info:
  name: IceWarp Mail Server - Open Redirect
  author: DhiyaneshDk
  severity: medium
  description: |
    IceWarp Mail Server contains an open redirect via the referer parameter. This can lead to phishing attacks or other unintended redirects.
  impact: |
    An attacker can exploit this vulnerability to redirect users to malicious websites, leading to phishing attacks or the theft of sensitive information.
  remediation: |
    Apply the latest security patches or updates provided by IceWarp to fix the open redirect vulnerability.
  reference:
    - https://www.icewarp.com/
    - https://twitter.com/shifacyclewala/status/1443298941311668227
    - http://icewarp.com
    - http://mail.ziyan.com
    - https://medium.com/%40rohitgautam26/cve-2021-36580-69219798231c
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2021-36580
    cwe-id: CWE-601
    epss-score: 0.01564
    epss-percentile: 0.7229
    cpe: cpe:2.3:a:icewarp:icewarp_server:*:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: icewarp
    product: icewarp_server
    shodan-query:
      - title:"icewarp"
      - http.title:"icewarp"
    fofa-query: title="icewarp"
    google-query: intitle:"icewarp"
  tags: cve2021,cve,icewarp,redirect,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/webmail/basic/?referer=https://interact.sh&_c=auth&ctz=120&signup_password=&_a%5bsignup%5d=1"

    matchers:
      - type: regex
        part: header
        regex:
          - '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)interact\.sh\/?(\/|[^.].*)?$' # https://regex101.com/r/L403F0/1
# digest: 490a0046304402204e8d44b4fbfaa3b905e8981e3149d140685cebd8fe9f5e3697bf7cb601e3c2d302204f37393ddd28cbf6ed3dfc9278e5909ab9085d40d1e98c5cae175bf46a73637a:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.4Medium risk
Vulners AI Score6.4
CVSS 3.16.1
EPSS0.01564
SSVC
70