Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wolfgang ettlinger vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2018-7702
SecurEnvoy SecurMail prior to 9.2.501 allows remote malicious users to spoof transmission of arbitrary e-mail messages, resend e-mail messages to arbitrary recipients, or modify arbitrary message bodies and attachments by leveraging missing authentication and authorization.
Securenvoy Securmail
1 EDB exploit
4.3
CVSSv2
CVE-2018-7703
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail prior to 9.2.501 allows remote malicious users to inject arbitrary web script or HTML via the mailboxid parameter to secmail/getmessage.exe.
Securenvoy Securmail
1 EDB exploit
4
CVSSv2
CVE-2018-7704
SecurEnvoy SecurMail prior to 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via the option1 parameter in a reply action to secmail/getmessage.exe.
Securenvoy Securmail
1 EDB exploit
5.5
CVSSv2
CVE-2018-7705
Directory traversal vulnerability in SecurEnvoy SecurMail prior to 9.2.501 allows remote authenticated users to read e-mail messages to arbitrary recipients via a .. (dot dot) in the filename parameter to secupload2/upload.aspx.
Securenvoy Securmail
1 EDB exploit
4
CVSSv2
CVE-2020-27017
Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 is vulnerable to an XML External Entity Processing (XXE) vulnerability which could allow an authenticated administrator to read arbitrary local files. An attacker must already have obtained product administrat...
Trendmicro Interscan Messaging Security Virtual Appliance
4.3
CVSSv2
CVE-2014-5216
Multiple cross-site scripting (XSS) vulnerabilities in NetIQ Access Manager (NAM) 4.x prior to 4.0.1 HF3 allow remote malicious users to inject arbitrary web script or HTML via (1) the location parameter in a dev.Empty action to nps/servlet/webacc, (2) the error parameter to nidp...
Microfocus Access Manager 4.0
Microfocus Access Manager 4.0.1
1 EDB exploit
8.3
CVSSv2
CVE-2013-1616
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allows remote malicious users to execute arbitrary commands by injecting a command into an application script.
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
1 EDB exploit
4
CVSSv2
CVE-2018-7706
Directory traversal vulnerability in SecurEnvoy SecurMail prior to 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via a .. (dot dot) in the option2 parameter in an attachment action to secmail/getmessage.exe.
Securenvoy Securmail
1 EDB exploit
4.3
CVSSv2
CVE-2018-7707
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail prior to 9.2.501 allows remote malicious users to inject arbitrary web script or HTML via an HTML-formatted e-mail message.
Securenvoy Securmail
1 EDB exploit
6.5
CVSSv2
CVE-2016-1607
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr prior to 2.0 Security Update 2 allow remote malicious users to hijack the authentication of administrators, as demonstrated by reconfiguring time settings via a vaconfig/time...
Novell Filr
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »