Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:31 p.m.5 views

CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

7.5CVSS7.1AI score0.00085EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:29 p.m.4 views

CVE-2023-40160

Directory traversal vulnerability exists in Mailing List Search CGI pmmls.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a remote attacker may obtain arbitrary files on the server...

3.7CVSS7.1AI score0.0016EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 5:43 a.m.2 views

CVE-2023-39933

Insufficient verification vulnerability exists in Broadcast Mail CGI pmc.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution...

4.3CVSS7.4AI score0.00145EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 4:10 a.m.4 views

CVE-2023-39223

Stored cross-site scripting vulnerability exists in CGIs included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser...

5.4CVSS6.1AI score0.00092EPSS
Exploits0References1
NVD
NVDadded 2024/03/18 1:15 a.m.5 views

CVE-2023-39933

Insufficient verification vulnerability exists in Broadcast Mail CGI pmc.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution...

4.3CVSS7AI score0.00145EPSS
Exploits0References2
NVD
NVDadded 2024/03/18 1:15 a.m.7 views

CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

7.5CVSS6.8AI score0.00085EPSS
Exploits0References2
NVD
NVDadded 2024/03/18 1:15 a.m.3 views

CVE-2023-39223

Stored cross-site scripting vulnerability exists in CGIs included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser...

5.4CVSS5.9AI score0.00092EPSS
Exploits0References2
CVE
CVEadded 2024/03/18 12:32 a.m.54 views

CVE-2023-40747

CVE-2023-40747 affects A.K.I Software PMailServer/PMailServer2 CGIs within the Internal Simple Webserver. The vulnerability is a directory traversal that could allow a remote attacker to access arbitrary files outside the DocumentRoot. Affected CGIs include pmc.exe, and the vulnerability is assoc...

7.5CVSS7AI score0.00085EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/18 12:32 a.m.10 views

CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

7AI score0.00085EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/03/18 12:32 a.m.10 views

CVE-2023-40747

Directory traversal vulnerability exists in A.K.I Software's PMailServer/PMailServer2 products' CGIs included in Internal Simple Webserver. If this vulnerability is exploited, a remote attacker may access arbitrary files outside DocumentRoot...

7.1AI score0.00085EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/03/18 12:32 a.m.14 views

CVE-2023-40160

Directory traversal vulnerability exists in Mailing List Search CGI pmmls.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a remote attacker may obtain arbitrary files on the server...

7.1AI score0.0016EPSS
Exploits0References2
CVE
CVEadded 2024/03/18 12:32 a.m.49 views

CVE-2023-40160

CVE-2023-40160 involves a directory traversal in the Mailing List Search CGI (pmmls.exe) of A.K.I Software PMailServer/PMailServer2. The vulnerability may allow a remote attacker to obtain arbitrary files on the server. Affected CGI is pmmls.exe (and related PMailServer/PMailServer2 components). ...

3.7CVSS7AI score0.0016EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/03/18 12:32 a.m.7 views

CVE-2023-39933

Insufficient verification vulnerability exists in Broadcast Mail CGI pmc.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution...

7.3AI score0.00145EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/18 12:32 a.m.9 views

CVE-2023-39933

Insufficient verification vulnerability exists in Broadcast Mail CGI pmc.exe included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, a user who can upload files through the product may execute an arbitrary executable file with the web server's execution...

7.2AI score0.00145EPSS
Exploits0References2
CVE
CVEadded 2024/03/18 12:32 a.m.38 views

CVE-2023-39933

CVE-2023-39933 affects A.K.I Software PMailServer/PMailServer2, specifically the Broadcast Mail CGI (pmc.exe). The vulnerability is described as Insufficient verification, enabling an attacker who can upload files through the product to execute an arbitrary executable with the web server’s privil...

4.3CVSS7.2AI score0.00145EPSS
Exploits0References2
CVE
CVEadded 2024/03/18 12:32 a.m.52 views

CVE-2023-39223

CVE-2023-39223 is a stored cross-site scripting vulnerability in CGIs included with A.K.I Software’s PMailServer and PMailServer2. Multiple sources describe an arbitrary script execution in a logged-in user’s browser when the CGI handling user input is exploited. The JVN entry lists affected CGIs...

5.4CVSS6AI score0.00092EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/03/18 12:32 a.m.9 views

CVE-2023-39223

Stored cross-site scripting vulnerability exists in CGIs included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser...

6.2AI score0.00092EPSS
Exploits0References2
Cvelist
Cvelistadded 2024/03/18 12:32 a.m.14 views

CVE-2023-39223

Stored cross-site scripting vulnerability exists in CGIs included in A.K.I Software's PMailServer/PMailServer2 products. If this vulnerability is exploited, an arbitrary script may be executed on a logged-in user's web browser...

6.1AI score0.00092EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/03/17 12:0 a.m.2 views

PT-2024-12861 · A.K.I · Pmailserver +1

Name of the Vulnerable Software and Affected Versions: A.K.I Software's PMailServer/PMailServer2 products affected versions not specified Description: A directory traversal vulnerability exists in the Mailing List Search CGI pmmls.exe included in the products. This vulnerability can be exploited ...

3.7CVSS6.7AI score0.0016EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2023/09/05 5:55 a.m.2 views

Multiple vulnerabilities in CGIs of PMailServer and PMailServer2

Overview CGIs included with PMailServer and PMailServer2 provided by A.K.I Software contain multiple vulnerabilities listed below. Stored cross-site scripting vulnerability CWE-79 - CVE-2023-39223 Insufficient verification vulnerability in Broadcast Mail CGI pmc.exe CWE-434 - CVE-2023-39933...

7.5CVSS6.7AI score0.0016EPSS
Exploits0References9
Rows per page
Query Builder