Lucene search
K

37 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-0939

Malware in sbrugna...

7.5CVSS6.4AI score0.02726EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-4320

Malware in sbrugna...

4.3CVSS6.4AI score0.01065EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4321

Malware in sbrugna...

5.8CVSS6.4AI score0.01083EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2010-3891

Malware in sbrugna...

4.3CVSS6.4AI score0.01104EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4322

Malware in sbrugna...

5.8CVSS6.4AI score0.0105EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 11:17 a.m.9 views

CVE-2013-2302

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server...

1.9CVSS6.4AI score0.00304EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:47 a.m.6 views

CVE-2010-3913

CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS7.3AI score0.01104EPSS
Exploits0References1
NVD
NVD
added 2013/04/04 7:55 p.m.32 views

CVE-2013-2302

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server...

1.9CVSS6.1AI score0.00304EPSS
Exploits0References3
Prion
Prion
added 2013/04/04 7:55 p.m.15 views

Design/Logic Flaw

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server...

1.9CVSS6.5AI score0.00304EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2013/04/04 7:0 p.m.45 views

CVE-2013-2302

The CVE-2013-2302 entry concerns TransWARE Active! mail 6. Affected component: Active! mail with an external public interface enabled. Root cause: information disclosure allowing local users to obtain other users’ credentials by leveraging shell access via TELNET/SSH to the server. Impact (as doc...

1.9CVSS6.2AI score0.00304EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/04/04 7:0 p.m.21 views

CVE-2013-2302

TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a TELNET or SSH session to the server...

6.1AI score0.00304EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/04/04 12:0 a.m.46 views

JVN#04288738: Active! mail vulnerable to information disclosure

Active! mail provided by TransWARE is a webmail software. Active! mail contains an information disclosure vulnerability. Impact If the "external public interface" is enabled, an attacker who can log into the server may obtain users credentials. Solution Restrict log-in to the server Allow...

1.9CVSS6.1AI score0.00304EPSS
Exploits0
NVD
NVD
added 2010/11/05 5:0 p.m.10 views

CVE-2010-3913

CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS6.9AI score0.01104EPSS
Exploits0References5
Prion
Prion
added 2010/11/05 5:0 p.m.13 views

Crlf injection

CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

4.3CVSS7.4AI score0.01104EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2010/11/05 4:28 p.m.44 views

CVE-2010-3913

CVE-2010-3913 affects TransWARE Active! mail 6 (build 6.40.010047750 and earlier). The vulnerability is a CRLF/HTTP header injection that can enable HTTP response splitting and allow remote attackers to inject headers. Documented impacts include falsified information being displayed and potential...

4.3CVSS7.1AI score0.01104EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2010/11/05 4:28 p.m.13 views

CVE-2010-3913

CRLF injection vulnerability in TransWARE Active! mail 6 build 6.40.010047750 and earlier allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...

6.9AI score0.01104EPSS
Exploits0References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2010/10/29 12:0 a.m.29 views

JVN#72541530: Active! mail 6 vulnerable to HTTP header injection

Active! mail 6 from TransWARE Co. is a web-based email software. Active! mail 6 contains a HTTP header injection vulnerability. Impact Falsified information may be displayed or an arbitrary script may be executed on the user's web browser. HTTP response splitting attacks are also possible. Soluti...

4.3CVSS6.7AI score0.01104EPSS
Exploits0
NVD
NVD
added 2009/12/17 6:30 p.m.15 views

CVE-2009-4354

TransWARE Active! mail 2003 build 2003.0139.0871 and earlier does not properly secure the session ID in a session cookie, which allows remote attackers to hijack web sessions, probably related to the "secure" flag for cookies in SSL sessions...

5.8CVSS6.7AI score0.0105EPSS
Exploits0References4
NVD
NVD
added 2009/12/17 6:30 p.m.16 views

CVE-2009-4352

Multiple cross-site scripting XSS vulnerabilities in TransWARE Active! mail 2003 build 2003.0139.0871 and earlier, and possibly other versions before 2003.0139.0939, allow remote attackers to inject arbitrary web script or HTML via the 1 From, 2 To, 3 Cc, and 4 Bcc parameters...

4.3CVSS5.9AI score0.01065EPSS
Exploits0References5
Prion
Prion
added 2009/12/17 6:30 p.m.16 views

Code injection

TransWARE Active! mail 2003 build 2003.0139.0871 and earlier does not properly secure the session ID in a session cookie, which allows remote attackers to hijack web sessions, probably related to the "secure" flag for cookies in SSL sessions...

5.8CVSS7.2AI score0.0105EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder