57 matches found
EUVD-2005-0446
Malware in sbrugna...
EUVD-2004-2449
Malware in sbrugna...
EUVD-2006-3226
Malware in sbrugna...
EUVD-2007-4156
Malware in sbrugna...
EUVD-2002-1369
Malware in sbrugna...
EUVD-2006-3230
Malware in sbrugna...
EUVD-2002-2388
Malware in sbrugna...
EUVD-2005-1438
Malware in sbrugna...
CVE-2002-2410
openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information...
CVE-2002-2410
openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information...
CVE-2002-2410
OpenWebMail is affected: Open WebMail 1.7 and 1.71 expose sensitive information via error messages and respond differently for existing vs non-existent users, enabling remote username enumeration and disclosure of certain configuration and version information. Affected component: openwebmail.pl. ...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Open Webmail OWM 2.52 20060831 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 searchtype, 2 longpage, and 3 page parameters to a openwebmail-main.pl; the 4 prefscaller, 5 userfirsttime, 6 page, 7 sort, 8...
CVE-2007-4172
Multiple cross-site scripting XSS vulnerabilities in Open Webmail OWM 2.52 20060831 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 searchtype, 2 longpage, and 3 page parameters to a openwebmail-main.pl; the 4 prefscaller, 5 userfirsttime, 6 page, 7 sort, 8...
CVE-2007-4172
Open WebMail (OWM) 2.52 20060831 and earlier contains multiple cross-site scripting (XSS) vulnerabilities. The issue affects the following scripts and parameters: openwebmail-main.pl (searchtype, longpage, page); openwebmail-prefs.pl (prefs_caller, userfirsttime, page, sort, folder, message_id); ...
CVE-2007-4172
Multiple cross-site scripting XSS vulnerabilities in Open Webmail OWM 2.52 20060831 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 searchtype, 2 longpage, and 3 page parameters to a openwebmail-main.pl; the 4 prefscaller, 5 userfirsttime, 6 page, 7 sort, 8...
CVE-2006-3233
Cross-site scripting XSS vulnerability in openwebmail-read.pl in Open WebMail OWM 2.52, and other versions released before 06/18/2006, allows remote attackers to inject arbitrary web script or HTML via the from field. NOTE: some third party sources have mentioned the "to" and "from" fields,...
CVE-2006-3233
CVE-2006-3233 describes a cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52 and earlier builds released before 2006-06-18, specifically in the openwebmail-read.pl component. An attacker can inject arbitrary web script or HTML via the from field, enabling potential credential or ...
CVE-2006-3233
Cross-site scripting XSS vulnerability in openwebmail-read.pl in Open WebMail OWM 2.52, and other versions released before 06/18/2006, allows remote attackers to inject arbitrary web script or HTML via the from field. NOTE: some third party sources have mentioned the "to" and "from" fields,...
CVE-2006-3229
Cross-site scripting XSS vulnerability in Open WebMail OWM 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the 1 To and 2 From fields in openwebmail-main.pl, and possibly 3 other unspecified vectors related to "openwebmailerr...
CVE-2006-3229
Cross-site scripting XSS vulnerability in Open WebMail OWM 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the 1 To and 2 From fields in openwebmail-main.pl, and possibly 3 other unspecified vectors related to "openwebmailerr...