Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

rockliffe mailsite 6.1.22 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2006-0790
Rockliffe MailSite 7.0 and previous versions allows remote malicious users to cause a denial of service by sending crafted LDAP packets to port 389/TCP, as demonstrated by the ProtoVer LDAP testsuite.
Rockliffe Mailsite 7.0.31Rockliffe Mailsite 5.3.4Rockliffe Mailsite 6.1.22Rockliffe Mailsite 4.2.10Rockliffe Mailsite 5
NA
CVE-2006-0341
Cross-site scripting (XSS) vulnerability in WCONSOLE.DLL in Rockliffe MailSite 5.x and 6.1.22 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the query string.
Rockliffe Mailsite
NA
CVE-2005-3429
Rockliffe MailSite Express prior to 6.1.22, with the option to save login information enabled, saves user passwords in plaintext in cookies, which allows local users to obtain passwords by reading the cookie file, or remote malicious users to obtain the cookies via cross-site scr...
Rockliffe Mailsite Express 6.1.20Rockliffe Mailsite Express
NA
CVE-2005-3430
Incomplete blacklist vulnerability in Rockliffe MailSite Express prior to 6.1.22 allows remote malicious users to upload and execute arbitrary script files by giving the files specific extensions, such as (1) .unk, (2) .asa, and possibly (3) .htr and (4) .aspx, which are not filt...
Rockliffe Mailsite ExpressRockliffe Mailsite Express 6.1.20
NA
CVE-2005-3428
Cross-site scripting (XSS) vulnerability in Rockliffe MailSite Express prior to 6.1.22 allows remote malicious users to inject arbitrary web script or HTML via a message body.
Rockliffe Mailsite Express
NA
CVE-2005-3431
Absolute path traversal vulnerability in Rockliffe MailSite Express prior to 6.1.22 allows remote malicious users to read arbitrary files via a full pathname in the AttachPath field of a mail message under composition.
Rockliffe Mailsite Express
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypassopen redirectCVE-2024-4358CVE-2024-24199CVE-2024-5550CVE-2024-5305CVE-2024-30373CVE-2024-1800deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook