Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2009/05/18 12:0 a.m.65 views

IceWarp Merak Mail Server < 9.4.2 Multiple Vulnerabilities

IceWarp Merak Mail Server is prone to multiple vulnerabilities. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free softwar...

6.4AI score
Exploits0References9
CVE
CVE
added 2009/05/05 8:0 p.m.61 views

CVE-2009-1468

IceWarp eMail Server / WebMail Server prior to version 9.4.2 contains SQL injection vulnerabilities in the webmail groupware search (server/webmail.php). The flaws allow remote authenticated users to manipulate SQL through the sql and order_by elements within an XML search query, enabling arbitra...

6.5CVSS8.1AI score0.01925EPSS
Exploits2References6Affected Software2
Packet Storm
Packet Storm
added 2009/05/05 12:0 a.m.96 views

IceWarp WebMail SQL Injection

Advisory: IceWarp WebMail Server: SQL Injection in Groupware Component During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in the IceWarp WebMail Server. Attackers that are in control of a user account for the web-based email and groupware components are able to execut...

6.5CVSS0.1AI score0.01925EPSS
Exploits2
securityvulns
securityvulns
added 2009/05/05 12:0 a.m.78 views

[RT-SA-2009-003] IceWarp WebMail Server: SQL Injection in Groupware Component

Advisory: IceWarp WebMail Server: SQL Injection in Groupware Component During a penetration test RedTeam Pentesting discovered multiple SQL-Injections in the IceWarp WebMail Server. Attackers that are in control of a user account for the web-based email and groupware components are able to execut...

6.5CVSS7.7AI score0.01925EPSS
Exploits2
Rows per page
Query Builder