25 matches found
EUVD-2009-1513
Malware in sbrugna...
EUVD-2017-16830
Malware in sbrugna...
EUVD-2018-8175
Malware in sbrugna...
EUVD-2024-52754
Malicious code in bioql PyPI...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
IceWarp Server 跨站脚本漏洞
IceWarp Server is a mailing server from the Czech company IceWarp. A security vulnerability exists in IceWarp Server version 10.2.1, which stems from insufficient handling of meta parameters, resulting in vulnerability to cross-site scripting attacks...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
CVE-2024-55218 affects IceWarp Server 10.2.1. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable via the meta parameter, allowing attackers to inject JavaScript in victims’ browsers when visiting crafted URLs. The nuclei template and vendor/NVD entries confirm this XSS in IceWarp...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
The vulnerability of the IceWarp Server, related to the lack of measures taken to protect the structure of web pages, allows attackers to carry out cross-site scripting attacks.
The vulnerability of the IceWarp Server web server is related to the lack of measures taken to protect the structure of the web page when processing the color parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the IceWarp Server, related to the lack of measures taken to protect the structure of web pages, allows attackers to carry out cross-site scripting attacks.
The vulnerability of the IceWarp Server web server is related to the lack of measures taken to protect the structure of the website. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
The vulnerability of the IceWarp Server, related to the lack of measures taken to protect the structure of web pages, allows attackers to carry out cross-site scripting attacks.
The vulnerability of the IceWarp Server web server is related to the lack of measures taken to protect the structure of the web page when processing the color parameter. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
PT-2023-6986 · Icewarp · Icewarp Server
Name of the Vulnerable Software and Affected Versions: IceWarp Server version 11.4.6.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited by a remote attacker to conduct cross-site scripting attacks via the color parameter...
CVE-2021-36580
IceWarp Mail Server (IceWarp Server Deep Castle 2 Update 1, version 13.0.1.2) is vulnerable to an open redirect via the referer parameter. The Nuclei template CVE-2021-36580 confirms this open redirect, enabling potential phishing or unintended redirects. Remediation is to apply the latest securi...
CVE-2018-16324
In IceWarp Server 12.0.3.1 and before, there is XSS in the /webmail/ username field...
CVE-2018-16324
In IceWarp Server 12.0.3.1 and before, there is XSS in the /webmail/ username field...
CVE-2018-16324
IceWarp Server 12.0.3.1 and earlier is affected by a cross-site scripting (XSS) vulnerability in the /webmail/ username field. The issue is confirmed in the CVE-2018-16324 entry and corroborated by NVD references, with CVSS Base Scores 4.3 (4.3) and 6.1 (3.0) indicating a network-exposed vulnerab...
IceWarp Server webmail component cross-site scripting vulnerability
IceWarp Server is a mail server product from IceWarp USA. The product supports email archiving, SmartAttach attachments, automatic migration, etc. webmail component is one of the mailbox components. A cross-site scripting vulnerability exists in the 'language' parameter of the webmail component i...