Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axigen vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2009-1484
Cross-site scripting (XSS) vulnerability in the web mail interface feature in AXIGEN Mail Server 6.2.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving e-mail messages. NOTE: the provenance of this information is unknown; the ...
Gecad Axigen Mail Server 6.2.2
645
VMScore
CVE-2012-4940
Multiple directory traversal vulnerabilities in the View Log Files component in Axigen Free Mail Server allow remote malicious users to read or delete arbitrary files via a .. (dot dot) in (1) the fileName parameter in a download action to source/loggin/page_log_dwn_file.hsp, or ...
Gecad Axigen Free Mail Server -
1 EDB exploit
935
VMScore
CVE-2008-0434
Format string vulnerability in the AXIMilter module in AXIGEN Mail Server 5.0.2 allows remote malicious users to execute arbitrary code via format string specifiers in the CNHO command.
Gecad Technologies Axigen Mail Server 5.0.2
1 EDB exploit
505
VMScore
CVE-2010-3460
Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote malicious users to read arbitrary files via a %5C (encoded backslash) in the URL.
Gecad Axigen Mail Server 7.4
Gecad Axigen Mail Server 7.2
Gecad Axigen Mail Server 7.0
Gecad Axigen Mail Server 6.2.2
Gecad Axigen Mail Server 5.0
Gecad Axigen Mail Server 7.3.1
Gecad Axigen Mail Server 7.3
Gecad Axigen Mail Server 7.1.2
Gecad Axigen Mail Server 7.1.1
Gecad Axigen Mail Server 6.1
Gecad Axigen Mail Server 6.0.1
Gecad Axigen Mail Server 5.0.3
Gecad Axigen Mail Server 4.0
Gecad Axigen Mail Server 2.0
Gecad Axigen Mail Server 1.2.6
Gecad Axigen Mail Server 1.1.0
Gecad Axigen Mail Server 1.0.7
Gecad Axigen Mail Server
Gecad Axigen Mail Server 7.2.1
Gecad Axigen Mail Server 7.1
Gecad Axigen Mail Server 3.0
Gecad Axigen Mail Server 2.0.5
1 EDB exploit
NA
CVE-2024-25080
WebMail in Axigen 10.x prior to 10.3.3.62 allows XSS via the image attachment viewer.
NA
CVE-2020-26942
An issue discovered in Axigen Mail Server 10.3.x prior to 10.3.1.27 and 10.3.2.x prior to 10.3.3.1 allows unauthenticated malicious users to submit a setAdminPassword operation request, subsequently setting a new arbitrary password for the admin account.
NA
CVE-2024-28589
An issue exists in Axigen Mail Server for Windows versions 10.5.18 and before, allows local low-privileged malicious users to execute arbitrary code and escalate privileges via insecure DLL loading from a world-writable directory during service initialization.
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2