Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zarafa webapp 1.6 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2014-5447
Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which allows local users to obtain sensitive information by reading the PHP session files. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-0103.
Zarafa Webapp 1.6
Zarafa Zarafa 7.1.10
187
VMScore
CVE-2014-0103
WebAccess in Zarafa prior to 7.1.10 and WebApp prior to 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.
Zarafa Zarafa 7.1.1
Zarafa Zarafa 7.1.3
Zarafa Zarafa 7.1.4
Zarafa Zarafa 7.0.1
Zarafa Webapp
Zarafa Zarafa 7.0.13
Zarafa Zarafa 7.0
Zarafa Zarafa 7.0.10
Zarafa Zarafa 7.0.8
Zarafa Zarafa 7.0.6
Zarafa Zarafa 7.0.5
Zarafa Zarafa 7.0.7
Fedoraproject Fedora 20
Zarafa Zarafa 7.0.2
Zarafa Zarafa 7.1.0
Zarafa Zarafa 7.1.2
Zarafa Zarafa 7.0.12
Zarafa Zarafa 7.0.11
Zarafa Zarafa 7.0.3
Zarafa Zarafa
Zarafa Zarafa 7.0.4
Fedoraproject Fedora 19
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started