Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
merak mail server 7.6.0 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2005-0322
MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 and Mail Server 7.6.4r with Icewarp Mail Server 5.3.2 uses weak encryption in the (1) users.cfg, (2) settings.cfg, (3) users.dat or (4) user.dat files, which allows local users to extract the passwords.
Icewarp Web Mail 5.3.0
Icewarp Web Mail 5.3.2
Merak Mail Server 7.6.0
Merak Mail Server 7.6.4r
2.1
CVSSv2
CVE-2005-0321
MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allows remote authenticated users to gain sensitive information via an HTTP request to (1) calendar_d.html, (2) calendar_m.html, (3) calendar_w.html, or (4) calendar_y.html, which reveal the installation path.
Merak Mail Server 7.6.0
Icewarp Web Mail 5.3.0
4.3
CVSSv2
CVE-2009-1469
CRLF injection vulnerability in the Forgot Password implementation in server/webmail.php in IceWarp eMail Server and WebMail Server prior to 9.4.2 makes it easier for remote malicious users to trick a user into disclosing credentials via CRLF sequences preceding a Reply-To header...
Icewarp Webmail Server 2.10.170
Icewarp Webmail Server 2.10.200
Icewarp Webmail Server 2.10.290
Icewarp Webmail Server 2.10.320
Icewarp Webmail Server 3.00.120
Icewarp Webmail Server 3.00.130
Icewarp Webmail Server 4.2.1
Icewarp Webmail Server 4.2.2
Icewarp Webmail Server 5.4.1
Icewarp Webmail Server 5.4.2
Icewarp Webmail Server 5.5.7
Icewarp Webmail Server 5.7.3
Icewarp Webmail Server 6.0.2
Icewarp Webmail Server 6.0.3
Icewarp Webmail Server 6.0.5
Icewarp Webmail Server 7.1.6
Icewarp Webmail Server 7.2.0
Icewarp Webmail Server 8.0.1
Icewarp Webmail Server 8.0.3
Icewarp Webmail Server 8.9.1
Icewarp Webmail Server 9.0.0
Icewarp Webmail Server 9.1.0
1 EDB exploit
4.3
CVSSv2
CVE-2009-1467
Multiple cross-site scripting (XSS) vulnerabilities in IceWarp eMail Server and WebMail Server prior to 9.4.2 allow remote malicious users to inject arbitrary web script or HTML via (1) the body of a message, related to the email view and incorrect HTML filtering in the cleanHTML...
Icewarp Webmail Server 2.10.115
Icewarp Webmail Server 2.10.150
Icewarp Webmail Server 2.10.240
Icewarp Webmail Server 2.10.250
Icewarp Webmail Server 2.10.340
Icewarp Webmail Server 2.10.350
Icewarp Webmail Server 3.10.110
Icewarp Webmail Server 4.00.30
Icewarp Webmail Server 4.4.2
Icewarp Webmail Server 5.1.2
Icewarp Webmail Server 5.5.3
Icewarp Webmail Server 5.5.4
Icewarp Webmail Server 5.8.4
Icewarp Webmail Server 5.8.5
Icewarp Webmail Server 6.1.0
Icewarp Webmail Server 6.2.1
Icewarp Webmail Server 7.4.5
Icewarp Webmail Server 7.5.2
Icewarp Webmail Server 8.2.2
Icewarp Webmail Server 8.3.5
Icewarp Webmail Server 2.10.110
Icewarp Webmail Server 9.2.0
2 EDB exploits
5
CVSSv2
CVE-2005-0320
Multiple cross-site scripting vulnerabilities in MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) username parameter to login.html, (2) accountid parameter to accountsettings_add.html, or the (3) n...
Icewarp Web Mail 5.3
2 EDB exploits
6.5
CVSSv2
CVE-2009-1468
Multiple SQL injection vulnerabilities in the search form in server/webmail.php in the Groupware component in IceWarp eMail Server and WebMail Server prior to 9.4.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) sql and (2) order_by elements in an ...
Icewarp Webmail Server 2.10.210
Icewarp Webmail Server 2.10.220
Icewarp Webmail Server 2.10.320
Icewarp Webmail Server 2.10.330
Icewarp Webmail Server 3.00.140
Icewarp Webmail Server 2.10.170
Icewarp Webmail Server 3.10.011
Icewarp Webmail Server 4.2.3
Icewarp Webmail Server 4.4.1
Icewarp Webmail Server 5.4.2
Icewarp Webmail Server 5.4.3
Icewarp Webmail Server 5.8.2
Icewarp Webmail Server 5.8.3
Icewarp Webmail Server 6.0.5
Icewarp Webmail Server 6.0.7
Icewarp Webmail Server 7.2.0
Icewarp Webmail Server 7.4.0
Icewarp Webmail Server 8.0.2
Icewarp Webmail Server 8.2.0
Icewarp Webmail Server 9.1.0
Icewarp Webmail Server
Icewarp Email Server 2.10.110
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started