Lucene search
K

7 matches found

VulnCheck KEV
VulnCheck KEV
added 2023/11/26 12:0 a.m.3 views

VulnCheck KEV: CVE-2019-12593

IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal...

7.5CVSS7.1AI score0.40965EPSS
Exploits5References1
ATTACKERKB
ATTACKERKB
added 2023/08/25 12:15 a.m.4 views

CVE-2023-39699

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...

9.8CVSS5.8AI score0.01162EPSS
Exploits1References4
OSV
OSV
added 2023/08/25 12:15 a.m.4 views

CVE-2023-39699

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...

9.8CVSS5.8AI score0.01162EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/08/24 12:0 a.m.6 views

IceWarp Mail Server 路径遍历漏洞

IceWarp Mail Server is a mail server product from the Czech company IceWarp IceWarp. The product supports email archiving, SmartAttach attachments, automatic migration, and more. A security vulnerability exists in IceWarp Mail Server version v10.4.5, which originates from a Local File Inclusion L...

9.8CVSS8.4AI score0.01162EPSS
Exploits1References5
CVE
CVE
added 2023/08/24 12:0 a.m.76 views

CVE-2023-39699

CVE-2023-39699 affects IceWarp Mail Server v10.4.5 via a Local File Inclusion (LFI) in the /calendar/minimizer/index.php component. The vulnerability allows an attacker to include or execute files from the server’s local filesystem. Documented impact is high (potential code execution/unauthorized...

9.8CVSS9.2AI score0.01162EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/24 12:0 a.m.6 views

PT-2023-27075 · Icewarp · Icewarp Mail Server

Name of the Vulnerable Software and Affected Versions: IceWarp Mail Server version 10.4.5 Description: The issue is related to a local file inclusion LFI vulnerability. It affects the /calendar/minimizer/index.php component, allowing attackers to include or execute files from the local file syste...

9.8CVSS9.1AI score0.01162EPSS
Exploits1References6
Prion
Prion
added 2018/05/08 8:29 p.m.16 views

Directory traversal

Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a 1 .. dot dot in the file parameter to a webmail/client/skins/default/css/css.php page or .../. dot dot dot slash dot in the 2 script or 3 style parameter to...

7.8CVSS7.2AI score0.58722EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder