Mailenable Professional@2.1 Security Vulnerabilities and Issues — Mailenable Professional@2.1 CVE List

Lucene search

MailenableMailenable Professional2.1

3 matches found

CVE•added 2007/02/15 11:28 p.m.•44 views

CVE-2007-0652

Cross-site request forgery (CSRF) vulnerability in MailEnable Professional before 2.37 allows remote attackers to modify arbitrary configurations and perform unauthorized actions as arbitrary users via a link or IMG tag.

5.1CVSS6.9AI score0.02105EPSS

CVE•added 2006/12/12 8:28 p.m.•39 views

CVE-2006-6484

The IMAP service for MailEnable Professional and Enterprise Edition 2.0 through 2.34, Professional Edition 1.6 through 1.83, and Enterprise Edition 1.1 through 1.40 allows remote attackers to cause a denial of service (crash) via unspecified vectors that trigger a null pointer dereference, as addre...

5CVSS6.5AI score0.3773EPSS

CVE•added 2007/02/15 11:28 p.m.•35 views

CVE-2007-0651

Multiple cross-site scripting (XSS) vulnerabilities in MailEnable Professional before 2.37 allow remote attackers to inject arbitrary Javascript script via (1) e-mail messages and (2) the ID parameter to (a) right.asp, (b) Forms/MAI/list.asp, and (c) Forms/VCF/list.asp in mewebmail/base/default/lan...

4.3CVSS5.9AI score0.02758EPSS