Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netwin surgemail vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-1714
Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Netwin Surgemail 3.0c2
4.3
CVSSv2
CVE-2005-0846
Multiple cross-site scripting (XSS) vulnerabilities in the email auto-reply message in SurgeMail 2.2g3 allow remote malicious users to inject arbitrary web script or HTML via the (1) message subject or (2) message header field.
Netwin Surgemail 2.2g3
5
CVSSv2
CVE-2007-6457
Stack-based buffer overflow in the webmail feature in SurgeMail 38k4 allows remote malicious users to cause a denial of service (crash) via a long Host header.
Netwin Surgemail 38k4
1 EDB exploit
4.3
CVSSv2
CVE-2012-2575
Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 6.0a4 allows remote malicious users to inject arbitrary web script or HTML via the SRC attribute of an IFRAME element in the body of an HTML e-mail message.
Netwin Surgemail 6.0
1 EDB exploit
10
CVSSv2
CVE-2007-4372
Unspecified vulnerability in NetWin SurgeMail 38k on Windows Server 2003 has unknown impact and remote attack vectors. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionab...
Netwin Surgemail 38k
6
CVSSv2
CVE-2007-4377
Stack-based buffer overflow in the IMAP service in SurgeMail 38k allows remote authenticated users to execute arbitrary code via a long argument to the SEARCH command. NOTE: this might overlap CVE-2007-4372.
Netwin Surgemail 38k
1 EDB exploit
4
CVSSv2
CVE-2008-7182
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions prior to 3.9g2, allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector...
Netwin Surgemail 3.9e
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2