CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

197 matches found

Tenable Nessus•added 2026/02/18 12:0 a.m.•1 views

SmarterMail < 100.0.9526 XSS (CVE-2026-26930)

The version of SmarterTools SmarterMail installed on the remote host is prior to 100.0.9526. It is, therefore, affected by a cross-site scripting vulnerability: - SmarterTools SmarterMail before build 9526 allows XSS via MAPI requests. CVE-2026-26930 Note that Nessus has not tested for this issue...

7.2CVSS5.1AI score0.00014EPSS

Exploits1References3

CVE•added 2026/02/16 4:27 p.m.•8 views

CVE-2026-26930

CVE-2026-26930 affects SmarterTools SmarterMail prior to version 9526, where XSS is possible via MAPI requests. The CVSS v3.1 base score is 7.2 (HIGH) with network attack vector, no privileges required, user interaction not required, and a changed scope. Patch guidance is to upgrade to 9526 or la...

7.2CVSS5.3AI score0.00014EPSS

Exploits1References3

CISA•added 2026/02/05 12:0 p.m.•7 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-11953link is external React Native Community CLI OS Command Injection Vulnerability CVE-2026-24423link is external SmarterTools SmarterMail Missing...

9.8CVSS5.5AI score0.81907EPSS

In wildExploits5References7

Cvelist•added 2026/01/23 4:53 p.m.•27 views

CVE-2026-24423 SmarterTools SmarterMail < Build 9511 Unauthenticated RCE via ConnectToHub API

SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be executed by the...

9.3CVSS0.81907EPSS

Exploits0References3

CNNVD•added 2026/01/22 12:0 a.m.•1 views

SmarterTools SmarterMail security vulnerability

SmarterTools SmarterMail is a set of email server software developed by SmarterTools Corporation. This software supports features such as spam filtering, data statistics, and Simple Mail Transfer Protocol SMTP authentication. Previous versions of SmarterTools SmarterMail, including the 9511...

9.8CVSS7.4AI score0.81651EPSS

Exploits3References5

CNNVD•added 2026/01/16 12:0 a.m.•1 views

SmarterTools SmarterTrack security vulnerabilities

SmarterTools SmarterTrack is a customer service software developed by SmarterTools Corporation. It can improve customer service and reduce support costs. Version 7922 of SmarterTools SmarterTrack contains a security vulnerability. This vulnerability stems from the Chat Management search form, whi...

7.5CVSS5.8AI score0.00074EPSS

Exploits1References4

CVE•added 2026/01/15 11:25 p.m.•8 views

CVE-2020-36926

SmarterTrack 7922 is affected by an information disclosure vulnerability in the Chat Management search form. The issue allows unauthenticated access to the /Management/Chat/frmChatSearch.aspx endpoint, exposing agents’ first and last names and their unique identifiers. Reported details consistent...

7.5CVSS5.9AI score0.00074EPSS

Exploits1References4Affected Software1

RedhatCVE•added 2026/01/09 11:50 a.m.•3 views

CVE-2009-4995

Cross-site scripting XSS vulnerability in frmTickets.aspx in SmarterTools SmarterTrack before 4.0.3504 allows remote attackers to inject arbitrary web script or HTML via the email address field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

4.3CVSS5.7AI score0.00263EPSS

Exploits0References1

OpenVAS•added 2026/01/06 12:0 a.m.•3 views

SmarterTools SmarterMail Detection Consolidation

Consolidation of SmarterTools SmarterMail detections. SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; if descripti...

7AI score

Exploits0References1