Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

icewarp icewarp 10.3.1 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2023-41013
Cross Site Scripting (XSS) in Webmail Calendar in IceWarp 10.3.1 allows remote malicious users to inject arbitrary web script or HTML via the "p4" field.
Icewarp Icewarp 10.3.1
645
VMScore
CVE-2011-3579
server/webmail.php in IceWarp WebMail in IceWarp Mail Server prior to 10.3.3 allows remote malicious users to read arbitrary files, and possibly send HTTP requests to intranet servers or cause a denial of service (CPU and memory consumption), via an XML external entity declaratio...
Icewarp Mail Server 10.0.3Icewarp Mail Server 10.0.4Icewarp Mail Server 10.2.1Icewarp Mail Server 10.2.2Icewarp Mail Server 9.4.2Icewarp Mail ServerIcewarp Mail Server 10.3.1Icewarp Mail Server 10.1.4Icewarp Mail Server 10.2.0Icewarp Mail Server 9.4.0Icewarp Mail Server 9.4.1Icewarp Mail Server 10.0.7Icewarp Mail Server 10.0.8Icewarp Mail Server 10.1.1Icewarp Mail Server 10.3.0Icewarp Mail Server 9.3.0Icewarp Mail Server 10.1.2Icewarp Mail Server 10.1.3Icewarp Mail Server 9.3.1Icewarp Mail Server 9.3.2
445
VMScore
CVE-2011-3580
IceWarp WebMail in IceWarp Mail Server prior to 10.3.3 allows remote malicious users to obtain configuration information via a direct request to the /server URI, which triggers a call to the phpinfo function.
Icewarp Mail Server 10.0.7Icewarp Mail Server 10.0.8Icewarp Mail Server 10.0.3Icewarp Mail Server 10.0.4Icewarp Mail Server 10.2.1Icewarp Mail Server 10.2.2Icewarp Mail Server 9.4.1Icewarp Mail Server 9.4.0Icewarp Mail Server 10.1.2Icewarp Mail Server 10.1.3Icewarp Mail Server 9.3.1Icewarp Mail Server 9.3.2Icewarp Mail Server 10.1.1Icewarp Mail Server 10.3.0Icewarp Mail Server 9.3.0Icewarp Mail Server 9.4.2Icewarp Mail Server 10.3.1Icewarp Mail Server 10.1.4Icewarp Mail Server 10.2.0Icewarp Mail Server
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223CVE-2024-0044information disclosureCVE-2024-35753HTML injectionCVE-2024-21306CVE-2024-35733SQL injectionCVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook