3 matches found
AfterLogic WebMail Lite PHP 7.0.1 - Cross-Site Request Forgery
Exploit Title : AfterLogic WebMail Lite PHP CSRF 4. + Author : Pablo '7days' Riberio 5. + Team: So Good Security 6. + Other 0days : http://pastebin.com/u/7days 7. + Version : = 7.0.1 8. + Tested on : windows/internet explorer 9. + Details: Reset admin password via CSRF 10. + Vendor:...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in MailBee WebMail Pro 3.4 and earlier; and possibly MailBee WebMail Pro ASP before 3.4.64, WebMail Lite ASP before 4.0.11, and WebMail Lite PHP before 4.0.22; allow remote attackers to inject arbitrary web script or HTML via the 1 mode parameter ...
CVE-2007-5290
CVE-2007-5290 describes multiple cross-site scripting (XSS) vulnerabilities in MailBee WebMail Pro 3.4 and earlier, and possibly MailBee WebMail Pro ASP before 3.4.64, plus WebMail Lite ASP before 4.0.11 and WebMail Lite PHP before 4.0.22. The issues allow remote attackers to inject arbitrary web...