28 matches found
CVE-2026-2234
C@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content...
CVE-2026-2234
CVE-2026-2234 concerns the C&Cm@il product developed by HGiga, described as a Missing Authentication vulnerability that allows unauthenticated remote attackers to read and modify any user’s mail content. The available entries consistently state a network-accessible flaw with no authentication req...
CVE-2026-2234 HGiga|C&Cm@il - Missing Authentication
C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content...
PT-2026-7077
C&Cm@il developed by HGiga has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to read and modify any user's mail content...
EUVD-2000-0067
Malware in sbrugna...
EUVD-2015-1514
Malware in sbrugna...
CVE-2022-36880
The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message...
MGASA-2022-0272 Updated webmin packages fix security vulnerability
The webmin package has been updated to version 1.998, fixing XSS issues in the HTTP Tunnel and Read Mail modules, along with several other bugs...
Webmin Cross-Site Scripting Vulnerability (CNVD-2022-54893)
A cross-site scripting vulnerability exists in Webmin, the Webmin community's Web-based system administration tool for Unix-like operating systems, due to a lack of data validation filtering of user-supplied and output data in the Read Mail module. An attacker could use this vulnerability to crea...
CVE-2022-36880
The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message...
CVE-2022-36880
The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message...
CVE-2022-36880
The Read Mail module in Webmin 1.995 and Usermin through 1.850 allows XSS via a crafted HTML e-mail message...
PT-2022-23684 · Webmin +1 · Webmin +1
Name of the Vulnerable Software and Affected Versions: Webmin version 1.995 Usermin versions through 1.850 Description: The issue allows for cross-site scripting XSS attacks via a crafted HTML e-mail message. This occurs in the Read Mail module of the affected software. Recommendations: For Webmi...
Webmin 跨站脚本漏洞
A cross-site scripting vulnerability exists in Webmin, the Webmin community's Web-based system administration tool for Unix-like operating systems, due to a lack of data validation filtering of user-supplied and output data in the Read Mail module. An attacker could use this vulnerability to crea...
Webmin <= 1.941 Multiple XSS Vulnerabilities
Webmin is prone to multiple cross-site scripting vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
CVE-2018-0682
Denbun by NEOJAPAN Inc. Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier does not properly manage sessions, which allows remote attackers to read/send mail or change the configuration via unspecified vectors...
Webmin 1.720 Read Mail Symlink Vulnerability
According to its self-reported version, the Webmin install hosted on the remote host is 1.720 It is, therefore, affected by a vulnerability in the Read Mail module which allows local users to read arbitrary files. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid108556...
CVE-2017-17752
Ability Mail Server 3.3.2 has Cross Site Scripting XSS via the body of an e-mail message, with JavaScript code executed on the Read Mail screen aka the /readmail URI. This is fixed in version 4.2.4...
Cross site scripting
Ability Mail Server 3.3.2 has Cross Site Scripting XSS via the body of an e-mail message, with JavaScript code executed on the Read Mail screen aka the /readmail URI. This is fixed in version 4.2.4...
CVE-2017-17752
Ability Mail Server 3.3.2 has Cross Site Scripting XSS via the body of an e-mail message, with JavaScript code executed on the Read Mail screen aka the /readmail URI. This is fixed in version 4.2.4...