Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:42 a.m.8 views

CVE-2023-48974

Cross Site Scripting vulnerability in Axigen WebMail prior to 10.3.3.61 allows a remote attacker to escalate privileges via a crafted script to the serverNameinput parameter...

9.6CVSS6.6AI score0.02962EPSS
Exploits1
Exploit DB
Exploit DB
added 2024/04/02 12:0 a.m.415 views

Axigen < 10.5.7 - Persistent Cross-Site Scripting

Exploit Title: Axigen alert1 PoC of the POST request: POST /?h=1bb40e85937506a7186a125bd8c5d7ef&page=glset HTTP/1.1 Host: localhost:9443 Cookie: eula=true;...

9.6CVSS9.5AI score0.02962EPSS
Exploits1
Circl
Circl
added 2024/02/08 2:21 a.m.7 views

CVE-2023-48974

creationtimestamp| type| source ---|---|--- 2024-02-08 02:21:34+00:00| seen| https://t.me/ctinow/181099 2024-02-11 15:34:24+00:00| seen| https://t.me/arpsyndicate/3423 2024-03-02 08:37:00+00:00| seen| https://t.me/ctinow/198274...

9.6CVSS7.3AI score0.02962EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/02/08 12:0 a.m.11 views

CVE-2023-48974

Cross Site Scripting vulnerability in Axigen WebMail prior to 10.3.3.61 allows a remote attacker to escalate privileges via a crafted script to the serverNameinput parameter...

6.6AI score0.02962EPSS
Exploits1References2
CVE
CVE
added 2024/02/08 12:0 a.m.83 views

CVE-2023-48974

Axigen WebMail is affected by a Cross-Site Scripting vulnerability (CVE-2023-48974) in versions prior to 10.3.3.61. The issue allows a remote attacker to escalate privileges by injecting a crafted script via the serverName_input parameter. Public exploit activity exists (e.g., Exploit-DB) and mai...

9.6CVSS8.9AI score0.02962EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder