Stored XSS vulnerability. This vulnerability could allow an attacker to store a malicious JavaScript payload via GET and POST methods on multiple parameters in the MailAdmin_dll.htm...
5.4CVSS
6AI Score
0.0004EPSS
An information exposure vulnerability has been found, the exploitation of which could allow a remote user to retrieve sensitive information stored on the server such as credential files, configuration files, application files, etc., simply by appending any of the following parameters to the end of....
6.5CVSS
6.8AI Score
0.001EPSS
Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' parameter in the /MailAdmin_dll.htm...
6.5CVSS
7.2AI Score
0.001EPSS
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3...
8.1AI Score
0.242EPSS
SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the...
7.2AI Score
0.0004EPSS
Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote...
7.3AI Score
0.04EPSS
SMTP server in SLmail 3.1 and earlier allows remote attackers to cause a denial of service via malformed commands whose arguments begin with a "(" (parenthesis) character, such as (1) SEND, (2) VRFY, (3) EXPN, (4) MAIL FROM, (5) RCPT...
7.7AI Score
0.012EPSS
Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM...
8.1AI Score
0.003EPSS
Buffer overflow in SMTP HELO command in Sendmail allows a remote attacker to hide...
7.2AI Score
0.008EPSS
7.4AI Score
0.04EPSS