Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hastymail hastymail 1.1 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2006-5313
Hastymail 1.5 and previous versions prior to 20061008 allows remote authenticated users to send arbitrary SMTP commands by placing them after a CRLF.CRLF sequence in the smtp_message parameter. NOTE: this crosses privilege boundaries if the SMTP server configuration prevents a us...
Hastymail Hastymail 1.0.2
Hastymail Hastymail 1.1
Hastymail Hastymail 1.2
Hastymail Hastymail
Hastymail Hastymail 1.0.1
6.5
CVSSv2
CVE-2006-5262
CRLF injection vulnerability in lib/session.php in Hastymail 1.5 and previous versions prior to 20061008 allows remote authenticated users to send arbitrary IMAP commands via a CRLF sequence in a mailbox name. NOTE: the attack crosses privilege boundaries if the IMAP server confi...
Hastymail Hastymail
Hastymail Hastymail 1.0.1
Hastymail Hastymail 1.0.2
Hastymail Hastymail 1.1
Hastymail Hastymail 1.2
1 EDB exploit
4.3
CVSSv2
CVE-2011-4541
Cross-site scripting (XSS) vulnerability in index.php in Hastymail2 2.1.1 before RC2 allows remote malicious users to inject arbitrary web script or HTML via the rs parameter in a mailbox Drafts action.
Hastymail Hastymail2 2.0.2
Hastymail Hastymail2 2.0.1
Hastymail Hastymail2 2.0
Hastymail Hastymail2 1.1
Hastymail Hastymail2
Hastymail Hastymail2 2.0.5
Hastymail Hastymail2 1.0
Hastymail Hastymail2 1.01
Hastymail Hastymail2 2.0.4
Hastymail Hastymail2 2.0.3
1 EDB exploit
7.5
CVSSv2
CVE-2011-4542
Hastymail2 2.1.1 before RC2 allows remote malicious users to execute arbitrary commands via the (1) rs or (2) rsargs[] parameter in a mailbox Drafts action to the default URI.
Hastymail Hastymail2 2.0
Hastymail Hastymail2
Hastymail Hastymail2 2.0.2
Hastymail Hastymail2 2.0.1
Hastymail Hastymail2 1.1
Hastymail Hastymail2 2.0.5
Hastymail Hastymail2 2.0.4
Hastymail Hastymail2 2.0.3
Hastymail Hastymail2 1.01
Hastymail Hastymail2 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2004-2704
Hastymail 1.0.1 and previous versions (stable) and 1.1 and previous versions (development) does not send the "attachment" parameter in the Content-Disposition field for attachments, which causes the attachment to be rendered inline by Internet Explorer when the victim c...
Hastymail Hastymail
Microsoft Internet Explorer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started