Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axigen vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2015-5379
Cross-site scripting (XSS) vulnerability in actions.hsp in the Ajax WebMail interface in AXIGEN Mail Server prior to 9.0 allows remote malicious users to inject arbitrary web script or HTML via an email attachment.
Axigen Axigen Mail Server 8.0
Axigen Axigen Mail Server 8.1.3
Axigen Axigen Mail Server 8.2.0
Axigen Axigen Mail Server 8.0.3
Axigen Axigen Mail Server 8.1.0
Axigen Axigen Mail Server 8.0.1
Axigen Axigen Mail Server 8.0.2
Axigen Axigen Mail Server 8.1.1
Axigen Axigen Mail Server 8.1.2
NA
CVE-2010-3459
Cross-site scripting (XSS) vulnerability in the Ajax WebMail interface in AXIGEN Mail Server prior to 7.4.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Gecad Axigen Mail Server
Gecad Axigen Mail Server 7.3
Gecad Axigen Mail Server 7.2.1
Gecad Axigen Mail Server 7.2
Gecad Axigen Mail Server 7.0
Gecad Axigen Mail Server 5.0.2
Gecad Axigen Mail Server 5.0.1
Gecad Axigen Mail Server 3.0
Gecad Axigen Mail Server 1.2.5
Gecad Axigen Mail Server 1.2.4
Gecad Axigen Mail Server 1.1.0
Gecad Axigen Mail Server 1.0.6
Gecad Axigen Mail Server 7.3.3
Gecad Axigen Mail Server 7.3.2
Gecad Axigen Mail Server 7.1.3
Gecad Axigen Mail Server 7.1.2
Gecad Axigen Mail Server 6.1
Gecad Axigen Mail Server 4.0.2
Gecad Axigen Mail Server 4.0.1
Gecad Axigen Mail Server 2.0.3
Gecad Axigen Mail Server 2.0
Gecad Axigen Mail Server 1.2.0
6.1
CVSSv3
CVE-2022-31470
An XSS vulnerability in the index_mobile_changepass.hsp reset-password section of Axigen Mobile WebMail prior to 10.2.3.12 and 10.3.x prior to 10.3.3.47 allows malicious users to run arbitrary Javascript code that, using an active end-user session (for a logged-in user), can acce...
Axigen Axigen Mobile Webmail
1 Github repository
5.4
CVSSv3
CVE-2023-40355
Cross Site Scripting (XSS) vulnerability in Axigen versions 10.3.3.0 prior to 10.3.3.59, 10.4.0 prior to 10.4.19, and 10.5.0 prior to 10.5.5, allows authenticated malicious users to execute arbitrary code and obtain sensitive information via the logic for switching between the St...
Axigen Axigen Mobile Webmail
9.6
CVSSv3
CVE-2023-48974
Cross Site Scripting vulnerability in Axigen WebMail before 10.3.3.61 allows a remote malicious user to escalate privileges via a crafted script to the serverName_input parameter.
Axigen Axigen Mail Server
6.1
CVSSv3
CVE-2023-49101
WebAdmin in Axigen 10.3.x prior to 10.3.3.61, 10.4.x prior to 10.4.24, and 10.5.x prior to 10.5.10 allows XSS attacks against admins because of mishandling of viewing the usage of SSL certificates.
Axigen Axigen Mobile Webmail
9.8
CVSSv3
CVE-2023-23566
A 2-Step Verification problem in Axigen 10.3.3.52 allows an malicious user to access a mailbox by bypassing 2-Step Verification when they try to add an account to any third-party webmail service (or add an account to Outlook or Gmail, etc.) with IMAP or POP3 without any verificat...
Axigen Axigen Mail Server 10.3.3.52
NA
CVE-2012-2592
Cross-site scripting (XSS) vulnerability in Axigen Mail Server 8.0.1 allows remote malicious users to inject arbitrary web script or HTML via the body of an email.
Axigen Axigen Mail Server 8.0.1
1 EDB exploit
NA
CVE-2007-0887
axigen 1.2.6 up to and including 2.0.0b1 does not properly parse login credentials, which allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a base64-encoded "*\x00" sequence on the imap port (143/tcp).
Gecad Technologies Axigen Mail Server 1.2.6
Gecad Technologies Axigen Mail Server 2.0.0b1
1 EDB exploit
NA
CVE-2007-0886
Heap-based buffer underflow in axigen 1.2.6 up to and including 2.0.0b1 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via certain base64-encoded data on the pop3 port (110/tcp), which triggers an integer overflo...
Gecad Technologies Axigen Mail Server 1.2.6
Gecad Technologies Axigen Mail Server 2.0.0b1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »