Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atmail atmail webmail vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6702
Cross-site scripting (XSS) vulnerability in Global.pm in @Mail prior to 4.61 allows remote malicious users to inject arbitrary web script or HTML via crafted e-mail messages. NOTE: The provenance of this information is unknown; the details are obtained solely from third party inf...
Atmail Atmail Webmail 4.5
Atmail Atmail Webmail 4.51
Atmail Atmail Webmail 4.1
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.2
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.4
Atmail Atmail Webmail
NA
CVE-2007-0953
Cross-site scripting (XSS) vulnerability in search.pl in @Mail 4.61 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keywords parameter.
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.6
Atmail Atmail Webmail 4.61
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.51
NA
CVE-2010-4930
Cross-site scripting (XSS) vulnerability in index.php in @mail Webmail prior to 6.2.0 allows remote malicious users to inject arbitrary web script or HTML via the MailType parameter in a mail/auth/processlogin action.
Atmail Webmail 6.1.6
Atmail Webmail 6.1.5
Atmail Webmail 6.1.4
Atmail Webmail 6.1.3
Atmail Webmail 6.1.8
Atmail Webmail 6.1.7
Atmail Webmail
Atmail Webmail 6.1.2
1 EDB exploit
NA
CVE-2006-6701
Cross-site request forgery (CSRF) vulnerability in util.pl in @Mail WebMail 4.51, and util.php in 5.x prior to 5.03, allows remote malicious users to modify arbitrary settings and perform unauthorized actions as an arbitrary user, as demonstrated using a settings action in the SR...
Atmail Atmail Webmail 3.0
Atmail Atmail Webmail 4.0
Atmail Atmail Webmail 4.51
NA
CVE-2007-2825
Multiple cross-site scripting (XSS) vulnerabilities in ReadMsg.php in @Mail 5.02 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving (1) links and (2) images.
Atmail Atmail Webmail
NA
CVE-2007-2153
Cross-site scripting (XSS) vulnerability in atmail.php in @Mail 5.0 allows remote malicious users to inject arbitrary web script or HTML via the username parameter.
Atmail Atmail Webmail
NA
CVE-2013-6017
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server prior to 7.2 allows remote malicious users to inject arbitrary web script or HTML via the body of an e-mail message, as demonstrated by the SRC attribute of an IFRAME element.
Atmail Atmail
Atmail Atmail 7.1.5
Atmail Atmail 6.6.2
Atmail Atmail 6.6.1
Atmail Atmail 6.3.5
Atmail Atmail 6.3.4
Atmail Atmail 6.20.6
Atmail Atmail 6.20.5
Atmail Atmail 6.20.4
Atmail Atmail 7.1.1
Atmail Atmail 7.1.0
Atmail Atmail 6.4.2
Atmail Atmail 6.4.1
Atmail Atmail 6.3.1
Atmail Atmail 6.3.0
Atmail Atmail 6.20.11
Atmail Atmail 6.20.10
Atmail Atmail 7.1.4
Atmail Atmail 7.1.3
Atmail Atmail 7.1.2
Atmail Atmail 6.6.0
Atmail Atmail 6.5.0
1 EDB exploit
NA
CVE-2013-2585
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server 6.6.x prior to 6.6.3 and 7.0.x prior to 7.0.3 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to index.php/mail/viewmessage/getattachment/folder/INBOX/uniqueId/<MessageID&g...
Atmail Atmail 6.6.0
Atmail Atmail 7.0.0
Atmail Atmail 7.0.1
Atmail Atmail 6.6.1
Atmail Atmail 6.6.2
NA
CVE-2013-6028
Multiple cross-site request forgery (CSRF) vulnerabilities in Atmail Webmail Server prior to 7.2 allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts, (2) modify user accounts, (3) delete user accounts, or (4) stop th...
Atmail Atmail
Atmail Atmail 7.1.5
Atmail Atmail 6.4.0
Atmail Atmail 6.3.6
Atmail Atmail 6.3.5
Atmail Atmail 6.3.4
Atmail Atmail 6.20.10
Atmail Atmail 7.1.3
Atmail Atmail 7.1.1
Atmail Atmail 6.6.1
Atmail Atmail 6.5.0
Atmail Atmail 6.4.1
Atmail Atmail 6.3.3
Atmail Atmail 6.3.1
Atmail Atmail 6.20.13
Atmail Atmail 6.20.11
Atmail Atmail 7.1.0
Atmail Atmail 6.6.4
Atmail Atmail 6.6.3
Atmail Atmail 6.6.2
Atmail Atmail 6.20.8
Atmail Atmail 6.20.7
NA
CVE-2006-6700
Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.
Calacode Atmail Webmail System
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »