Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
icewarp mail server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1516
Stack-based buffer overflow in the IceWarpServer.APIObject ActiveX control in api.dll in IceWarp Merak Mail Server 9.4.1 might allow context-dependent malicious users to execute arbitrary code via a large value in the second argument to the Base64FileEncode method, as possibly de...
Icewarp Merak Mail Server 9.4.1
1 EDB exploit
NA
CVE-2008-5734
Cross-site scripting (XSS) vulnerability in WebMail Pro in IceWarp Software Merak Mail Server 9.3.2 allows remote malicious users to inject arbitrary web script or HTML via an IMG element in an HTML e-mail message.
Icewarp Merak Mail Server 9.3.2
NA
CVE-2009-1469
CRLF injection vulnerability in the Forgot Password implementation in server/webmail.php in IceWarp eMail Server and WebMail Server prior to 9.4.2 makes it easier for remote malicious users to trick a user into disclosing credentials via CRLF sequences preceding a Reply-To header...
Icewarp Email Server 2.10.340
Icewarp Webmail Server 4.2.1
Icewarp Email Server 5.9.4
Icewarp Webmail Server 6.0.7
Icewarp Email Server 2.10.115
Icewarp Webmail Server 7.6.4
Icewarp Webmail Server 7.1.4
Icewarp Email Server 4.2.3
Icewarp Webmail Server 3.00.140
Icewarp Email Server 7.0.1
Icewarp Webmail Server 5.5.7
Icewarp Webmail Server 2.10.320
Icewarp Webmail Server 6.0.3
Icewarp Webmail Server 5.8.6
Icewarp Webmail Server 8.5.0
Icewarp Webmail Server 5.9.4
Icewarp Webmail Server 3.00.130
Icewarp Webmail Server 5.8.2
Icewarp Webmail Server 7.4.2
Icewarp Email Server 4.10.040
Icewarp Webmail Server 4.10.040
Icewarp Webmail Server 5.1.2
1 EDB exploit
NA
CVE-2009-1467
Multiple cross-site scripting (XSS) vulnerabilities in IceWarp eMail Server and WebMail Server prior to 9.4.2 allow remote malicious users to inject arbitrary web script or HTML via (1) the body of a message, related to the email view and incorrect HTML filtering in the cleanHTML...
Icewarp Email Server 2.10.340
Icewarp Webmail Server 4.2.1
Icewarp Email Server 5.9.4
Icewarp Webmail Server 6.0.7
Icewarp Email Server 2.10.115
Icewarp Webmail Server 7.6.4
Icewarp Webmail Server 7.1.4
Icewarp Email Server 4.2.3
Icewarp Webmail Server 3.00.140
Icewarp Email Server 7.0.1
Icewarp Webmail Server 5.5.7
Icewarp Webmail Server 2.10.320
Icewarp Webmail Server 6.0.3
Icewarp Webmail Server 5.8.6
Icewarp Webmail Server 8.5.0
Icewarp Webmail Server 5.9.4
Icewarp Webmail Server 3.00.130
Icewarp Webmail Server 5.8.2
Icewarp Webmail Server 7.4.2
Icewarp Email Server 4.10.040
Icewarp Webmail Server 4.10.040
Icewarp Webmail Server 5.1.2
2 EDB exploits
NA
CVE-2009-1468
Multiple SQL injection vulnerabilities in the search form in server/webmail.php in the Groupware component in IceWarp eMail Server and WebMail Server prior to 9.4.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) sql and (2) order_by elements in an ...
Icewarp Email Server 2.10.340
Icewarp Webmail Server 4.2.1
Icewarp Email Server 5.9.4
Icewarp Webmail Server 6.0.7
Icewarp Email Server 2.10.115
Icewarp Webmail Server 7.6.4
Icewarp Webmail Server 7.1.4
Icewarp Email Server 4.2.3
Icewarp Webmail Server 3.00.140
Icewarp Email Server 7.0.1
Icewarp Webmail Server 5.5.7
Icewarp Webmail Server 2.10.320
Icewarp Webmail Server 6.0.3
Icewarp Webmail Server 5.8.6
Icewarp Webmail Server 8.5.0
Icewarp Webmail Server 5.9.4
Icewarp Webmail Server 3.00.130
Icewarp Webmail Server 5.8.2
Icewarp Webmail Server 7.4.2
Icewarp Email Server 4.10.040
Icewarp Webmail Server 4.10.040
Icewarp Webmail Server 5.1.2
1 EDB exploit
NA
CVE-2005-0320
Multiple cross-site scripting vulnerabilities in MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) username parameter to login.html, (2) accountid parameter to accountsettings_add.html, or the (3) n...
Icewarp Web Mail 5.3
2 EDB exploits
6.1
CVSSv3
CVE-2023-40779
An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote malicious user to execute arbitrary code via a crafted request to the URL.
Icewarp Deep Castle G2 13.0.1.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5