Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atmail webmail vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6702
Cross-site scripting (XSS) vulnerability in Global.pm in @Mail prior to 4.61 allows remote malicious users to inject arbitrary web script or HTML via crafted e-mail messages. NOTE: The provenance of this information is unknown; the details are obtained solely from third party inf...
Atmail Atmail Webmail 4.5
Atmail Atmail Webmail 4.51
Atmail Atmail Webmail 4.1
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.2
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.4
Atmail Atmail Webmail
NA
CVE-2010-4930
Cross-site scripting (XSS) vulnerability in index.php in @mail Webmail prior to 6.2.0 allows remote malicious users to inject arbitrary web script or HTML via the MailType parameter in a mail/auth/processlogin action.
Atmail Webmail 6.1.6
Atmail Webmail 6.1.5
Atmail Webmail 6.1.4
Atmail Webmail 6.1.3
Atmail Webmail 6.1.8
Atmail Webmail 6.1.7
Atmail Webmail
Atmail Webmail 6.1.2
1 EDB exploit
NA
CVE-2007-0953
Cross-site scripting (XSS) vulnerability in search.pl in @Mail 4.61 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keywords parameter.
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.6
Atmail Atmail Webmail 4.61
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.51
NA
CVE-2006-6701
Cross-site request forgery (CSRF) vulnerability in util.pl in @Mail WebMail 4.51, and util.php in 5.x prior to 5.03, allows remote malicious users to modify arbitrary settings and perform unauthorized actions as an arbitrary user, as demonstrated using a settings action in the SR...
Atmail Atmail Webmail 3.0
Atmail Atmail Webmail 4.0
Atmail Atmail Webmail 4.51
NA
CVE-2007-2825
Multiple cross-site scripting (XSS) vulnerabilities in ReadMsg.php in @Mail 5.02 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving (1) links and (2) images.
Atmail Atmail Webmail
NA
CVE-2007-2153
Cross-site scripting (XSS) vulnerability in atmail.php in @Mail 5.0 allows remote malicious users to inject arbitrary web script or HTML via the username parameter.
Atmail Atmail Webmail
NA
CVE-2006-6700
Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.
Calacode Atmail Webmail System
NA
CVE-2007-6196
Cross-site scripting (XSS) vulnerability in util.php in Calacode @Mail prior to 5.2 allows remote malicious users to inject arbitrary web script or HTML via the func parameter.
Calacode Atmail Webmail System
NA
CVE-2006-0842
Cross-site scripting (XSS) vulnerability in Calacode @Mail 4.3 allows remote malicious users to inject arbitrary web script or HTML via a modified javascript: string in the SRC attribute of an IMG element in an e-mail message, as demonstrated by "java	script:." ...
Calacode Atmail Webmail System 4.3
NA
CVE-2013-6017
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server prior to 7.2 allows remote malicious users to inject arbitrary web script or HTML via the body of an e-mail message, as demonstrated by the SRC attribute of an IFRAME element.
Atmail Atmail
Atmail Atmail 7.1.5
Atmail Atmail 6.6.2
Atmail Atmail 6.6.1
Atmail Atmail 6.3.5
Atmail Atmail 6.3.4
Atmail Atmail 6.20.6
Atmail Atmail 6.20.5
Atmail Atmail 6.20.4
Atmail Atmail 7.1.1
Atmail Atmail 7.1.0
Atmail Atmail 6.4.2
Atmail Atmail 6.4.1
Atmail Atmail 6.3.1
Atmail Atmail 6.3.0
Atmail Atmail 6.20.11
Atmail Atmail 6.20.10
Atmail Atmail 7.1.4
Atmail Atmail 7.1.3
Atmail Atmail 7.1.2
Atmail Atmail 6.6.0
Atmail Atmail 6.5.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »