Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipswitch vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3878
Multiple cross-site scripting (XSS) vulnerabilities in the web client interface in Ipswitch IMail Server 12.3 and 12.4, possibly prior to 12.4.1.15, allow remote malicious users to inject arbitrary web script or HTML via (1) the Name field in an add new contact action in the Cont...
Ipswitch Imail Server 12.3
Ipswitch Imail Server 12.4
1 EDB exploit
NA
CVE-2009-4775
Format string vulnerability in Ipswitch WS_FTP Professional 12 prior to 12.2 allows remote malicious users to cause a denial of service (crash) via format string specifiers in the status code portion of an HTTP response.
Ipswitch Ws Ftp 12.0
Ipswitch Ws Ftp 12.0.1
1 EDB exploit
NA
CVE-2007-4345
Buffer overflow in IMail Client 9.22, as shipped with IPSwitch IMail Server 2006.22, allows remote malicious users to execute arbitrary code via a long boundary parameter in a multipart MIME e-mail message.
Ipswitch Imail Client 9.22
Ipswitch Imail Server 2006.22
NA
CVE-2006-2351
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote malicious users to inject arbitrary web script or HTML via the (1) sDeviceView or (2) nDeviceID parameter to (a) NmConsole/Navigation.asp o...
Ipswitch Whatsup Professional 2006
Ipswitch Whatsup Professional 2006 Premium
2 EDB exploits
NA
CVE-2006-2352
Multiple cross-site scripting (XSS) vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote malicious users to inject arbitrary web script or HTML via unknown vectors in (1) NmConsole/Tools.asp and (2) NmConsole/DeviceSelection.asp...
Ipswitch Whatsup Professional 2006
Ipswitch Whatsup Professional 2006 Premium
NA
CVE-2006-2353
NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote malicious users to redirect users to other websites via the (1) sCancelURL and possibly (2) sRedirectUrl parameters.
Ipswitch Whatsup Professional 2006
Ipswitch Whatsup Professional 2006 Premium
NA
CVE-2006-2354
NmConsole/Login.asp in Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium generates different error messages in a way that allows remote malicious users to enumerate valid usernames. NOTE: the provenance of this information is unknown; the details a...
Ipswitch Whatsup Professional 2006 Premium
Ipswitch Whatsup Professional 2006
NA
CVE-2006-2355
Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium allows remote malicious users to obtain full path information via 404 error messages. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...
Ipswitch Whatsup Professional 2006
Ipswitch Whatsup Professional 2006 Premium
NA
CVE-2006-2357
Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote malicious users to obtain source code for scripts via a trailing dot in a request to NmConsole/Login.asp.
Ipswitch Whatsup Professional 2006
Ipswitch Whatsup Professional 2006 Premium
NA
CVE-2008-3734
Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via format string specifiers in a connection greeting (response).
Ipswitch Ws Ftp Home 2007.0.0.2
Ipswitch Ws Ftp Pro 2007.1.0.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »