26 matches found
EUVD-2007-2056
Malware in sbrugna...
EUVD-2007-5270
Malware in sbrugna...
MailBee WebMail Pro 3.4 Check_login.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23481/info MailBee WebMail Pro is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...
AfterLogic MailBee WebMail Pro 3.x default.asp mode2 Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-bas...
Directory traversal
Directory traversal vulnerability in downloadviewattachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the tempfilename parameter...
CVE-2008-0333
Directory traversal vulnerability in downloadviewattachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the tempfilename parameter...
CVE-2008-0333
Directory traversal vulnerability in downloadviewattachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. dot dot in the tempfilename parameter...
MailBee WebMail Pro 4.1 (ASP.NET) Remote File Disclosure Vulnerability
No description provided by source. homepage: www.afterlogic.com example: http://www.xxx.com/webmail-pro-net/downloadviewattachment.aspx?tempfilename=../../../../../../../../../../../../../../../../../../boot.ini -=M.o.B=-...
mailbee-rfd.txt
homepage: www.afterlogic.com example: http://www.xxx.com/webmail-pro-net/downloadviewattachment.aspx?tempfilename=../../../../../../../../../../../../../../../../../../boot.ini -=M.o.B=-...
MailBee WebMail Pro 4.1 (ASP.NET) Remote File Disclosure Vulnerability
Exploit for unknown platform in category web applications ====================================================================== MailBee WebMail Pro 4.1 ASP.NET Remote File Disclosure Vulnerability ====================================================================== homepage: www.afterlogic.com...
MailBee WebMail Pro 4.1 - Remote File Disclosure
MailBee WebMail Pro 4.1 - Remote File Disclosure homepage: www.afterlogic.com example: http://www.xxx.com/webmail-pro-net/downloadviewattachment.aspx?tempfilename=../../../../../../../../../../../../../../../../../../boot.ini -=M.o.B=- milw0rm.com 2008-01-16...
MailBee WebMail Pro 4.1 - Remote File Disclosure
homepage: www.afterlogic.com example: http://www.xxx.com/webmail-pro-net/downloadviewattachment.aspx?tempfilename=../../../../../../../../../../../../../../../../../../boot.ini -=M.o.B=- milw0rm.com 2008-01-16...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in MailBee WebMail Pro 3.4 and earlier; and possibly MailBee WebMail Pro ASP before 3.4.64, WebMail Lite ASP before 4.0.11, and WebMail Lite PHP before 4.0.22; allow remote attackers to inject arbitrary web script or HTML via the 1 mode parameter ...
CVE-2007-5290
Multiple cross-site scripting XSS vulnerabilities in MailBee WebMail Pro 3.4 and earlier; and possibly MailBee WebMail Pro ASP before 3.4.64, WebMail Lite ASP before 4.0.11, and WebMail Lite PHP before 4.0.22; allow remote attackers to inject arbitrary web script or HTML via the 1 mode parameter ...
CVE-2007-5290
CVE-2007-5290 describes multiple cross-site scripting (XSS) vulnerabilities in MailBee WebMail Pro 3.4 and earlier, and possibly MailBee WebMail Pro ASP before 3.4.64, plus WebMail Lite ASP before 4.0.11 and WebMail Lite PHP before 4.0.22. The issues allow remote attackers to inject arbitrary web...
CVE-2007-5290
Multiple cross-site scripting XSS vulnerabilities in MailBee WebMail Pro 3.4 and earlier; and possibly MailBee WebMail Pro ASP before 3.4.64, WebMail Lite ASP before 4.0.11, and WebMail Lite PHP before 4.0.22; allow remote attackers to inject arbitrary web script or HTML via the 1 mode parameter ...
Reporting Vulnerable Public Web mail
Reporting Vulnerable Public Software Technical Details: +===========================================================================+ + MailBee WebMail Pro =3.4 XSS Multiple Remote Vulnerabilities + +===========================================================================+ Authors: Ivan Sanche...
MailBeeWebMailPro.txt
+===========================================================================+ + MailBee WebMail Pro =3.4 XSS Multiple Remote Vulnerabilities + +===========================================================================+ Authors: Ivan Sanchez & Maximiliano Soler Product: MailBee WebMail Pro 3.4...
AfterLogic MailBee WebMail Pro 3.x - default.asp?mode2 Cross-Site Scripting
AfterLogic MailBee WebMail Pro 3.x - default.asp?mode2 Cross-Site Scripting source: https://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker ca...
AfterLogic MailBee WebMail Pro 3.x - login.php?mode Cross-Site Scripting
AfterLogic MailBee WebMail Pro 3.x - login.php?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can...