Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atmail atmail webmail vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-6702
Cross-site scripting (XSS) vulnerability in Global.pm in @Mail prior to 4.61 allows remote malicious users to inject arbitrary web script or HTML via crafted e-mail messages. NOTE: The provenance of this information is unknown; the details are obtained solely from third party inf...
Atmail Atmail Webmail 4.5
Atmail Atmail Webmail 4.51
Atmail Atmail Webmail 4.1
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.2
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.4
Atmail Atmail Webmail
4.3
CVSSv2
CVE-2007-0953
Cross-site scripting (XSS) vulnerability in search.pl in @Mail 4.61 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the keywords parameter.
Atmail Atmail Webmail 4.11
Atmail Atmail Webmail 4.6
Atmail Atmail Webmail 4.61
Atmail Atmail Webmail 4.3
Atmail Atmail Webmail 4.51
4.3
CVSSv2
CVE-2010-4930
Cross-site scripting (XSS) vulnerability in index.php in @mail Webmail prior to 6.2.0 allows remote malicious users to inject arbitrary web script or HTML via the MailType parameter in a mail/auth/processlogin action.
Atmail Webmail 6.1.6
Atmail Webmail 6.1.5
Atmail Webmail 6.1.4
Atmail Webmail 6.1.3
Atmail Webmail 6.1.8
Atmail Webmail 6.1.7
Atmail Webmail
Atmail Webmail 6.1.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-6701
Cross-site request forgery (CSRF) vulnerability in util.pl in @Mail WebMail 4.51, and util.php in 5.x prior to 5.03, allows remote malicious users to modify arbitrary settings and perform unauthorized actions as an arbitrary user, as demonstrated using a settings action in the SR...
Atmail Atmail Webmail 3.0
Atmail Atmail Webmail 4.0
Atmail Atmail Webmail 4.51
6.8
CVSSv2
CVE-2007-2153
Cross-site scripting (XSS) vulnerability in atmail.php in @Mail 5.0 allows remote malicious users to inject arbitrary web script or HTML via the username parameter.
Atmail Atmail Webmail
4.3
CVSSv2
CVE-2007-2825
Multiple cross-site scripting (XSS) vulnerabilities in ReadMsg.php in @Mail 5.02 and previous versions allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving (1) links and (2) images.
Atmail Atmail Webmail
4.3
CVSSv2
CVE-2013-6017
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server prior to 7.2 allows remote malicious users to inject arbitrary web script or HTML via the body of an e-mail message, as demonstrated by the SRC attribute of an IFRAME element.
Atmail Atmail
Atmail Atmail 7.1.5
Atmail Atmail 6.6.2
Atmail Atmail 6.6.1
Atmail Atmail 6.3.5
Atmail Atmail 6.3.4
Atmail Atmail 6.20.6
Atmail Atmail 6.20.5
Atmail Atmail 6.20.4
Atmail Atmail 7.1.1
Atmail Atmail 7.1.0
Atmail Atmail 6.4.2
Atmail Atmail 6.4.1
Atmail Atmail 6.3.1
Atmail Atmail 6.3.0
Atmail Atmail 6.20.11
Atmail Atmail 6.20.10
Atmail Atmail 7.1.4
Atmail Atmail 7.1.3
Atmail Atmail 7.1.2
Atmail Atmail 6.6.0
Atmail Atmail 6.5.0
1 EDB exploit
4.3
CVSSv2
CVE-2013-2585
Cross-site scripting (XSS) vulnerability in Atmail Webmail Server 6.6.x prior to 6.6.3 and 7.0.x prior to 7.0.3 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to index.php/mail/viewmessage/getattachment/folder/INBOX/uniqueId/<MessageID&g...
Atmail Atmail 6.6.0
Atmail Atmail 7.0.0
Atmail Atmail 7.0.1
Atmail Atmail 6.6.1
Atmail Atmail 6.6.2
6.8
CVSSv2
CVE-2013-6028
Multiple cross-site request forgery (CSRF) vulnerabilities in Atmail Webmail Server prior to 7.2 allow remote malicious users to hijack the authentication of administrators for requests that (1) add user accounts, (2) modify user accounts, (3) delete user accounts, or (4) stop th...
Atmail Atmail
Atmail Atmail 7.1.5
Atmail Atmail 6.4.0
Atmail Atmail 6.3.6
Atmail Atmail 6.3.5
Atmail Atmail 6.3.4
Atmail Atmail 6.20.10
Atmail Atmail 7.1.3
Atmail Atmail 7.1.1
Atmail Atmail 6.6.1
Atmail Atmail 6.5.0
Atmail Atmail 6.4.1
Atmail Atmail 6.3.3
Atmail Atmail 6.3.1
Atmail Atmail 6.20.13
Atmail Atmail 6.20.11
Atmail Atmail 7.1.0
Atmail Atmail 6.6.4
Atmail Atmail 6.6.3
Atmail Atmail 6.6.2
Atmail Atmail 6.20.8
Atmail Atmail 6.20.7
6.8
CVSSv2
CVE-2006-6700
Cross-site scripting (XSS) vulnerability in @Mail WebMail allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors. NOTE: This information is based upon a vague initial disclosure. Details will be updated after the grace period has ended.
Calacode Atmail Webmail System
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »