Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
spamtitan spamtitan vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-2965
Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan prior to 6.04 allows remote malicious users to inject arbitrary web script or HTML via the sortdir parameter.
Spamtitan Spamtitan
Spamtitan Spamtitan 6.01
Spamtitan Spamtitan 5.07
Spamtitan Spamtitan 5.06
Spamtitan Spamtitan 6.00
Spamtitan Spamtitan 5.13
Spamtitan Spamtitan 5.05
Spamtitan Spamtitan 5.04
Spamtitan Spamtitan 5.10
Spamtitan Spamtitan 5.08
Spamtitan Spamtitan 5.12
Spamtitan Spamtitan 5.11
4.3
CVSSv2
CVE-2011-5150
Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.07 and possibly earlier allow remote attackers or authenticated users to inject arbitrary web script or HTML via the (1) ipaddress or (2) domain parameter to setup-network.php, different vectors than CVE-2011-5149...
Spamtitan Spamtitan
1 EDB exploit
4.3
CVSSv2
CVE-2011-5149
Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.08 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) testaddr or (2) testpass parameter to auth-settings.php; (3) hostname, (4) domainname, or (5) mailserver par...
Spamtitan Spamtitan
1 EDB exploit
2.6
CVSSv2
CVE-2018-15136
TitanHQ SpamTitan prior to 7.01 has Improper input validation. This allows internal malicious users to bypass the anti-spam filter to send malicious emails to an entire organization by modifying the URL requests sent to the application.
Titanhq Spamtitan
5
CVSSv2
CVE-2020-35658
SpamTitan prior to 7.09 allows malicious users to tamper with backups, because backups are not encrypted.
Titanhq Spamtitan
6.5
CVSSv2
CVE-2011-4639
The (1) Traceroute and (2) Ping implementations in tools.php in SpamTitan WebTitan prior to 3.60 allow remote authenticated users to execute arbitrary commands via shell metacharacters in an argument, as demonstrated by an && (ampersand ampersand) sequence.
Spamtitan Webtitan
4
CVSSv2
CVE-2011-4640
Directory traversal vulnerability in logs-x.php in SpamTitan WebTitan prior to 3.60 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the fname parameter in a view action.
Spamtitan Webtitan
1 EDB exploit
8.5
CVSSv2
CVE-2019-6800
In TitanHQ SpamTitan up to and including 7.03, a vulnerability exists in the spam rule update function. Updates are downloaded over HTTP, including scripts which are subsequently executed with root permissions. An attacker with a privileged network position is trivially able to i...
Titanhq Spamtitan
7.5
CVSSv2
CVE-2011-4638
Multiple SQL injection vulnerabilities in SpamTitan WebTitan prior to 3.60 allow remote malicious users to execute arbitrary SQL commands via (1) the username parameter to login-x.php, and allow remote authenticated users to execute arbitrary SQL commands via the (2) bldomain, (3...
Spamtitan Webtitan
10
CVSSv2
CVE-2020-11698
An issue exists in Titan SpamTitan 7.07. Improper input sanitization of the parameter community on the page snmp-x.php would allow a remote malicious user to inject commands into the file snmpd.conf that would allow executing commands on the target server.
Titanhq Spamtitan 7.07
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »