1010 matches found
CVE-2014-3878
Multiple cross-site scripting XSS vulnerabilities in the web client interface in Ipswitch IMail Server 12.3 and 12.4, possibly before 12.4.1.15, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in an add new contact action in the Contacts section or unspecified...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the web client interface in Ipswitch IMail Server 12.3 and 12.4, possibly before 12.4.1.15, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in an add new contact action in the Contacts section or unspecified...
CVE-2014-3878
Multiple cross-site scripting XSS vulnerabilities in the web client interface in Ipswitch IMail Server 12.3 and 12.4, possibly before 12.4.1.15, allow remote attackers to inject arbitrary web script or HTML via 1 the Name field in an add new contact action in the Contacts section or unspecified...
CVE-2014-3878
Ipswitch IMail Server web client interface (12.3 and 12.4, possibly before 12.4.1.15) contains multiple cross-site scripting (XSS) vulnerabilities. The flaws allow remote attackers to inject arbitrary web script or HTML via (1) the Name field when adding a new contact, (2) an Add Group action in ...
IPSwitch IMail Server WEB client 12.4 - Persistent Cross-Site Scripting
IPSwitch IMail Server WEB client 12.4 - Persistent Cross-Site Scripting Exploit Title: IPSwitch IMail Server WEB client 12.4 persistent XSS Google Dork: Date: 3 june 2014 Exploit Author: Peru GoSecure! Vendor Homepage: www.ipswitch.com Software Link: http://www.imailserver.com/try/ Version: Teste...
IPSwitch IMail Server WEB client 12.4 - Persistent Cross-Site Scripting
Exploit Title: IPSwitch IMail Server WEB client 12.4 persistent XSS Google Dork: Date: 3 june 2014 Exploit Author: Peru GoSecure! Vendor Homepage: www.ipswitch.com Software Link: http://www.imailserver.com/try/ Version: Tested on 12.3 and 12.4 before 12.4.1.15 Tested on: WindowsServer2008R2 STD S...
Multiple Vendors STARTTLS Implementation Plaintext Arbitrary Command Injection Vulnerability
Multiple vendors SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.103935";...
Ipswitch IMail 11.01 - Cross-Site Scripting
!/usr/bin/perl Exploit Title: Ipswitch IMail 11.01 XSS Vulnerability Date: 26-04-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://www.ipswitch.com/ Platform: windows use Net::SMTP; ARGV Check if $ARGV != 2 print "\nUSAGE: IMail.pl \n"; exit; $host = $ARGV0; $attacker = $ARGV1; $victim ...
Ipswitch IMail 11.01 - Cross-Site Scripting
Ipswitch IMail 11.01 - Cross-Site Scripting !/usr/bin/perl Exploit Title: Ipswitch IMail 11.01 XSS Vulnerability Date: 26-04-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://www.ipswitch.com/ Platform: windows use Net::SMTP; ARGV Check if $ARGV != 2 print "\nUSAGE: IMail.pl \n"; exit;...
Ipswitch IMail 11.01 Cross Site Scripting
!/usr/bin/perl Exploit Title: Ipswitch IMail 11.01 XSS Vulnerability Date: 26-04-2013 Author: DaOne aka Mocking Bird Vendor Homepage: http://www.ipswitch.com/ Platform: windows use Net::SMTP; ARGV Check if $ARGV != 2 print "\nUSAGE: IMail.pl \n"; exit; $host = $ARGV0; $attacker = $ARGV1; $victim ...
Ipswitch IMail 11.01 XSS Vulnerability
Exploit for windows platform in category remote exploits !/usr/bin/perl 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote,...
Ipswitch TFTP Server Information disclosure (CVE-2009-1730)
A directory traversal vulnerability has been reported in Ipswitch TFTP Server. The vulnerability is caused due to improper validation of certain requests. A remote attacker can exploit this issue by sending a specially crafted TFTP packet to the target. Successful exploitation would allow an...
Ipswitch WhatsUp Gold Detection
The remote Windows host has an install of Ipswitch WhatsUp Gold, a web-based network management and monitoring tool. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62185; scriptversion"1.10"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10";...
Ipswitch WhatsUp Gold Multiple Vulnerabilities
The remote host has a version of Ipswitch WhatsUp Gold prior to 15.0.3 and, as such, may be affected by the following vulnerabilities : - There is a blind SQL injection vulnerability in the 'sGroupList' parameter of the 'WrVMwareHostList.asp' script. CVE-2012-2601 - An unspecified cross-site...
Ipswitch WhatsUp Gold 'sGroupList'参数SQL注入漏洞
BUGTRAQ ID: 54626 CVE ID: CVE-2012-2601 WhatsUp Gold提供完整易用的监控机制,全方位监控应用服务与网络设备,协助IT管理人员将网管信息转变成可阅读的商业信息。 Ipswitch WhatsUp Gold 15.02中的WrVMwareHostList.asp存在SQL注入漏洞,可允许远程攻击者通过sGroupList参数注入任意SQL命令。 0 Ipswitch WhatsUp Gold 15.0.2 厂商补丁: Ipswitch -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Ipswitch WhatsUp Gold 'snmpd.conf' HTML注入漏洞
BUGTRAQ ID: 55393 CVE ID: CVE-2012-2589 WhatsUp Gold提供完整易用的监控机制,全方位监控应用服务与网络设备,协助IT管理人员将网管信息转变成可阅读的商业信息。 WhatsUp Gold 15.0.2及其他版本存在HTML注入漏洞,可导致在受影响站点运行攻击者提供的HTML或JS代码,窃取Cookie身份验证凭证、控制站点外观。 0 Ipswitch WhatsUp Gold 15.0.2 厂商补丁: Ipswitch -------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Ipswitch WhatsUp Gold 15.02 contains SQL injection and XSS vulnerabilities
Overview Ipswitch WhatsUp Gold 15.02 has been reported to contain blind SQL injection and cross-site scripting vulnerabilities. Description Ipswitch WhatsUp Gold 15.02 has been reported to contain blind SQL injection and cross-site scripting vulnerabilities.CWE-79-CVE-2012-2601 - Blind SQL...
CVE-2012-2601
SQL injection vulnerability in WrVMwareHostList.asp in Ipswitch WhatsUp Gold 15.02 allows remote attackers to execute arbitrary SQL commands via the sGroupList parameter...
CVE-2012-4344
Cross-site scripting XSS vulnerability in Ipswitch WhatsUp Gold 15.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the SNMP system name of the attacking host...
Cross site scripting
Cross-site scripting XSS vulnerability in Ipswitch WhatsUp Gold 15.02 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the SNMP system name of the attacking host...