86 matches found
Directory traversal
Multiple directory traversal vulnerabilities in the IMAP service in Macallan Mail Solution before 4.8.05.004 allow remote authenticated users to read e-mails of other users or create, modify, or delete directories via a .. dot dot in the argument to the 1 CREATE, 2 SELECT, 3 DELETE, or 4 RENAME...
CVE-2006-0321
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...
CVE-2005-2769
Cross-site scripting XSS vulnerability in SqWebMail 5.0.4 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings that contain "" or other special characters, which is not properly sanitized by SqWebMail...
CVE-2005-2769
Cross-site scripting XSS vulnerability in SqWebMail 5.0.4 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings that contain "" or other special characters, which is not properly sanitized by SqWebMail...
CVE-2000-1234
violation.php3 in Phorum 3.0.7 allows remote attackers to send e-mails to arbitrary addresses and possibly use Phorum as a "spam proxy" by setting the Mod and ForumName parameters...
baby.txt
In this advisorie there are some vulnerabilities i found yesterday for BabyFtp server,Baby web server,Baby Pop3 server and Quick n' easy Ftp. I informed the Company about these vulnerabilities and here are the e-mails they sent me: -----------------------------------------------------------------...