PineApp - Mail Secure - The attacker must be logged in as a user to the Pineapp system. The attacker exploits the vulnerable nicUpload.php file to upload a malicious file,Thus taking over the server and running remote...
8.8CVSS
8.6AI Score
0.001EPSS
PineApp - Mail Secure - Attacker sending a request to :/blocking.php?url=alert(1) and stealing cookies...
6.1CVSS
6.2AI Score
0.001EPSS
Configuration file injection leading to Code Execution as Root in Kaspersky Secure Mail Gateway version...
9.8CVSS
9.6AI Score
0.005EPSS
Cross-site Request Forgery leading to Administrative account takeover in Kaspersky Secure Mail Gateway version...
8.8CVSS
9.3AI Score
0.001EPSS
6.1CVSS
8.6AI Score
0.002EPSS
7.8CVSS
9.4AI Score
0.0004EPSS
admin/management.html in PineApp Mail-SeCure allows remote attackers to bypass authentication and perform a sys_usermng operation via the it...
7.7AI Score
0.002EPSS
Absolute path traversal vulnerability in admin/viewmsg.php in PineApp Mail-SeCure allows remote attackers to read arbitrary files via a full pathname in the msg...
6.9AI Score
0.002EPSS
admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping...
7.9AI Score
0.019EPSS
PineApp Mail-SeCure before 3.70 allows remote authenticated users to gain privileges by leveraging console access and providing shell metacharacters in a "system ping"...
6.4AI Score
0.004EPSS