Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mdaemon vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-4371
Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated global administrators to read arbitrary files via a .. (dot dot) in the file parameter to (1) logfile_view.wdm and (2) confi...
Alt-n Webadmin 3.2.4
Alt-n Webadmin 3.2.3
8.8
CVSSv3
CVE-2021-27182
An issue exists in MDaemon prior to 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an malicious user to perform any action with the privileges of the attacked user.
1 Github repository
7.2
CVSSv3
CVE-2021-27183
An issue exists in MDaemon prior to 20.0.4. Administrators can use Remote Administration to exploit an Arbitrary File Write vulnerability. An attacker is able to create new files in any location of the filesystem, or he may be able to modify existing files. This vulnerability may...
1 Github repository
8.8
CVSSv3
CVE-2021-27181
An issue exists in MDaemon prior to 20.0.4. Remote Administration allows an malicious user to perform a fixation of the anti-CSRF token. In order to exploit this issue, the user has to click on a malicious URL provided by the attacker and successfully authenticate into the applic...
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7