CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2001-0201

Malware in sbrugna...

7.5CVSS6.4AI score0.00861EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2000-1085

Malware in sbrugna...

7.5CVSS6.4AI score0.02942EPSS

Exploits1References3

seebug.org•added 2014/07/01 12:0 a.m.•16 views

Trlinux Postaci Webmail 1.1.3 Password Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2029/info Postaci Webmail is a database-driven web e-mail system. PostACI contains a vulnerability in its default configuration that may allow a remote attacker to gain access to the underlying database. Webmail stores...

7.1AI score

Exploits0

NVD•added 2001/03/26 5:0 a.m.•6 views

CVE-2001-0201

The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program...

7.5CVSS7.9AI score0.00861EPSS

Exploits1References3

Cvelist•added 2001/03/09 5:0 a.m.•10 views

CVE-2001-0201

The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program...

7.9AI score0.00861EPSS

Exploits1References3

CVE•added 2001/03/09 5:0 a.m.•41 views

CVE-2001-0201

The CVE-2001-0201 entry describes a vulnerability in the Postaci frontend for PostgreSQL where improper filtering of characters (e.g., semicolons) could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program. This yields partial confidentiality, integrity, and a...

7.5CVSS8.3AI score0.00861EPSS

Exploits1References3Affected Software1

securityvulns•added 2001/01/18 12:0 a.m.•24 views

Дырка в PostACI

Пароль администрирования содержится в доступном пользователям файле...

0.7AI score

Exploits0References1

securityvulns•added 2001/01/18 12:0 a.m.•36 views

Postaci allows arbitrary SQL query execution

Popular webmail software Postaci ships with Debian lacks of checking for malicious SQL code in variables coming from user while deleting addressbook contacts, bookmarks and notes. This gives opportunity to malicious user to execute arbitrary SQL query. The problem affects Postaci if using...

7.8AI score

Exploits0

NVD•added 2001/01/09 5:0 a.m.•9 views

CVE-2000-1100

The default configuration for PostACI webmail system installs the /includes/global.inc configuration file within the web root, which allows remote attackers to read sensitive information such as database usernames and passwords via a direct HTTP GET request...

7.5CVSS6.3AI score0.02942EPSS

Exploits1References2

Cvelist•added 2000/12/19 5:0 a.m.•12 views

CVE-2000-1100

6.3AI score0.02942EPSS

Exploits1References2

CVE•added 2000/12/19 5:0 a.m.•40 views

CVE-2000-1100

The vulnerability CVE-2000-1100 affects the PostACI webmail system where the default configuration installs /includes/global.inc in the web root, enabling remote reads of sensitive data (e.g., database usernames and passwords) via a direct HTTP GET. The NVD description confirms this exposure; no ...

7.5CVSS6.7AI score0.02942EPSS

Exploits1References2Affected Software1

securityvulns•added 2000/12/05 12:0 a.m.•104 views

PostACI Webmail Vulnerability

The PostACI webmail system contains a rather trival vulnerability. One can obtain the hostname, username and password variables for the MySQL server in addition to other setup information if PostACI is setup as described running out of the box by simplying going to the url:...

7.1AI score

Exploits0

Exploit DB•added 2000/11/30 12:0 a.m.•37 views

Trlinux Postaci Webmail 1.1.3 - Password Disclosure

source: https://www.securityfocus.com/bid/2029/info Postaci Webmail is a database-driven web e-mail system. PostACI contains a vulnerability in its default configuration that may allow a remote attacker to gain access to the underlying database. Webmail stores database username and password...

7.4AI score

Exploits0

exploitpack•added 2000/11/30 12:0 a.m.•29 views

Trlinux Postaci Webmail 1.1.3 - Password Disclosure

Trlinux Postaci Webmail 1.1.3 - Password Disclosure source: https://www.securityfocus.com/bid/2029/info Postaci Webmail is a database-driven web e-mail system. PostACI contains a vulnerability in its default configuration that may allow a remote attacker to gain access to the underlying database...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by