Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

netwin surgemail 1.6e vulnerabilities and exploits

(subscribe to this query)
NA

CVE-2004-2547

NetWin (1) SurgeMail prior to 2.0c and (2) WebMail allow remote malicious users to obtain sensitive information via HTTP requests that (a) specify the / URI, (b) specify the /scripts/ URI, or (c) specify a non-existent file, which reveal the path in an error message.
Netwin Surgemail 1.3dNetwin Surgemail 1.1aNetwin Surgemail 1.8eNetwin Surgemail 1.6e2Netwin Surgemail 1.3iNetwin Surgemail 1.3cNetwin Surgemail 1.3bNetwin Surgemail 1.1dNetwin Surgemail 1.3lNetwin Surgemail 1.7b3Netwin Surgemail 1.5fNetwin Surgemail 1.6eNetwin Surgemail 1.6dNetwin Surgemail 1.4cNetwin Surgemail 1.3kNetwin Surgemail 1.3a Rc1Netwin Surgemail 1.5d2Netwin Surgemail 1.2aNetwin Surgemail 1.6aNetwin Webmail 3.1dNetwin Surgemail 1.5aNetwin Surgemail 1.3g
NA

CVE-2010-3201

Cross-site scripting (XSS) vulnerability in NetWin Surgemail prior to 4.3g allows remote malicious users to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
Netwin Surgemail 4.2d3-3Netwin Surgemail 3.6f7Netwin Surgemail 1.3dNetwin Surgemail 1.1aNetwin Surgemail 3.9g2Netwin Surgemail 3.8sNetwin Surgemail 3.0c2Netwin Surgemail Beta 3.9aNetwin Surgemail 2.2a6Netwin Surgemail 1.8eNetwin Surgemail 3.7bNetwin Surgemail 3.8dNetwin Surgemail 3.9aNetwin Surgemail 1.6e2Netwin Surgemail 1.3iNetwin Surgemail 1.3cNetwin Surgemail 2.0g2Netwin Surgemail 1.3bNetwin Surgemail 3.8bNetwin Surgemail 3.7b8Netwin Surgemail 3.8i3Netwin Surgemail 2.0e
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080log injectionCVE-2024-6041CVE-2024-37661XML external entityCVE-2024-0845privilege escalationCVE-2023-37057CVE-2024-27801
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook