12 matches found
EUVD-2006-5472
Malware in sbrugna...
EUVD-2008-2824
Malware in sbrugna...
MailMarshal Spam Quarantine Management (SQM) Multiple Component XSS
The remote host is running MailMarshal SMTP, a mail server for Windows. The Spam Quarantine Management web component included with the version of MailMarshal SMTP installed on the remote host is affected by a persistent cross-site scripting vulnerability in its 'delegated spam management' feature...
CVE-2008-2831
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
CVE-2008-2831
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
CVE-2008-2831
The CVE-2008-2831 issue affects MailMarshal SMTP’s Spam Quarantine Management (SQM) web component. In versions 6.0.3.8–6.3.0.0, two XSS vectors exist in the delegated spam management UI: via the list of blocked senders and via the list of safe senders. The vulnerability allows user‑assisted remot...
Sql injection
The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer...
CVE-2007-3796
The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer...
CVE-2007-3796
The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer...
CVE-2007-3796
CVE-2007-3796 affects MailMarshal SMTP’s Spam Quarantine HTTP interface. The vulnerability stems from the password reset feature, where a UserId value with excessive trailing whitespace followed by a malicious value can trigger SQL buffer truncation due to length inconsistencies, potentially allo...
KLA10247 Vulnerability in MailMArshal SMTP
An unspecified vulnerability was found in MailMarshal SMTP. By exploiting this vulnerability malicious users can modify arbitrary account information. This vulnerability can be exploited remotely via a specially designed UserId variable. Original advisories - Related products M86-MailMarshal-SMTP...