Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spamtitan spamtitan vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2965
Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan prior to 6.04 allows remote malicious users to inject arbitrary web script or HTML via the sortdir parameter.
Spamtitan Spamtitan
Spamtitan Spamtitan 6.01
Spamtitan Spamtitan 5.07
Spamtitan Spamtitan 5.06
Spamtitan Spamtitan 6.00
Spamtitan Spamtitan 5.13
Spamtitan Spamtitan 5.05
Spamtitan Spamtitan 5.04
Spamtitan Spamtitan 5.10
Spamtitan Spamtitan 5.08
Spamtitan Spamtitan 5.12
Spamtitan Spamtitan 5.11
NA
CVE-2011-5150
Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.07 and possibly earlier allow remote attackers or authenticated users to inject arbitrary web script or HTML via the (1) ipaddress or (2) domain parameter to setup-network.php, different vectors than CVE-2011-5149...
Spamtitan Spamtitan
1 EDB exploit
NA
CVE-2011-5149
Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.08 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) testaddr or (2) testpass parameter to auth-settings.php; (3) hostname, (4) domainname, or (5) mailserver par...
Spamtitan Spamtitan
1 EDB exploit
5.3
CVSSv3
CVE-2018-15136
TitanHQ SpamTitan prior to 7.01 has Improper input validation. This allows internal malicious users to bypass the anti-spam filter to send malicious emails to an entire organization by modifying the URL requests sent to the application.
Titanhq Spamtitan
NA
CVE-2011-4638
Multiple SQL injection vulnerabilities in SpamTitan WebTitan prior to 3.60 allow remote malicious users to execute arbitrary SQL commands via (1) the username parameter to login-x.php, and allow remote authenticated users to execute arbitrary SQL commands via the (2) bldomain, (3...
Spamtitan Webtitan
NA
CVE-2011-4639
The (1) Traceroute and (2) Ping implementations in tools.php in SpamTitan WebTitan prior to 3.60 allow remote authenticated users to execute arbitrary commands via shell metacharacters in an argument, as demonstrated by an && (ampersand ampersand) sequence.
Spamtitan Webtitan
NA
CVE-2011-4640
Directory traversal vulnerability in logs-x.php in SpamTitan WebTitan prior to 3.60 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the fname parameter in a view action.
Spamtitan Webtitan
1 EDB exploit
5.3
CVSSv3
CVE-2020-35658
SpamTitan prior to 7.09 allows malicious users to tamper with backups, because backups are not encrypted.
Titanhq Spamtitan
7.5
CVSSv3
CVE-2019-6800
In TitanHQ SpamTitan up to and including 7.03, a vulnerability exists in the spam rule update function. Updates are downloaded over HTTP, including scripts which are subsequently executed with root permissions. An attacker with a privileged network position is trivially able to i...
Titanhq Spamtitan
8.8
CVSSv3
CVE-2020-11699
An issue exists in Titan SpamTitan 7.07. Improper validation of the parameter fname on the page certs-x.php would allow an malicious user to execute remote code on the target server. The user has to be authenticated before interacting with this page.
Titanhq Spamtitan 7.07
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »