CVE-2023-4594 Cross-site Scripting in BVRP Software SLmail

Stored XSS vulnerability. This vulnerability could allow an attacker to store a malicious JavaScript payload via GET and POST methods on multiple parameters in the MailAdmindll.htm file...

CVE-2023-4593 Path Traversal in BVRP Software SLmail

Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' parameter in the /MailAdmindll.htm file...

CVE-2023-4593 Path Traversal in BVRP Software SLmail

Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' parameter in the /MailAdmindll.htm file...

BVRP Software Avanquest Software SLmail Path Traversal Vulnerability

BVRP Software Avanquest Software SLmail BVRP Software SLmail is an email server solution from BVRP Software, France. A path traversal vulnerability exists in BVRP Software Avanquest Software SLmail version 5.5.0.4433. An attacker could use this vulnerability to access files and directories stored...