22 matches found
EUVD-2018-8175
Malware in sbrugna...
EUVD-2017-16830
Malware in sbrugna...
EUVD-2009-1513
Malware in sbrugna...
EUVD-2024-52754
Malicious code in bioql PyPI...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
IceWarp Server 跨站脚本漏洞
IceWarp Server is a mailing server from the Czech company IceWarp. A security vulnerability exists in IceWarp Server version 10.2.1, which stems from insufficient handling of meta parameters, resulting in vulnerability to cross-site scripting attacks...
CVE-2024-55218
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting XSS via the meta parameter...
CVE-2024-55218
CVE-2024-55218 affects IceWarp Server 10.2.1. The issue is a Cross-Site Scripting (XSS) vulnerability exploitable via the meta parameter, allowing attackers to inject JavaScript in victims’ browsers when visiting crafted URLs. The nuclei template and vendor/NVD entries confirm this XSS in IceWarp...
PT-2023-6986 · Icewarp · Icewarp Server
Name of the Vulnerable Software and Affected Versions: IceWarp Server version 11.4.6.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited by a remote attacker to conduct cross-site scripting attacks via the color parameter...
CVE-2021-36580
IceWarp Mail Server (IceWarp Server Deep Castle 2 Update 1, version 13.0.1.2) is vulnerable to an open redirect via the referer parameter. The Nuclei template CVE-2021-36580 confirms this open redirect, enabling potential phishing or unintended redirects. Remediation is to apply the latest securi...
CVE-2018-16324
In IceWarp Server 12.0.3.1 and before, there is XSS in the /webmail/ username field...
CVE-2018-16324
In IceWarp Server 12.0.3.1 and before, there is XSS in the /webmail/ username field...
CVE-2018-16324
IceWarp Server 12.0.3.1 and earlier is affected by a cross-site scripting (XSS) vulnerability in the /webmail/ username field. The issue is confirmed in the CVE-2018-16324 entry and corroborated by NVD references, with CVSS Base Scores 4.3 (4.3) and 6.1 (3.0) indicating a network-exposed vulnerab...
IceWarp Server webmail component cross-site scripting vulnerability
IceWarp Server is a mail server product from IceWarp USA. The product supports email archiving, SmartAttach attachments, automatic migration, etc. webmail component is one of the mailbox components. A cross-site scripting vulnerability exists in the 'language' parameter of the webmail component i...
CVE-2017-7855
In the webmail component in IceWarp Server 11.3.1.5, there was an XSS vulnerability discovered in the "language" parameter...
CVE-2017-7855
In the webmail component in IceWarp Server 11.3.1.5, there was an XSS vulnerability discovered in the "language" parameter...
Design/Logic Flaw
In the webmail component in IceWarp Server 11.3.1.5, there was an XSS vulnerability discovered in the "language" parameter...