Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

dr_insane vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2004-2447
Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote malicious users to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or...
1st Class Internet Solutions 1st Class Mail Server 4.01
NA
CVE-2005-4202
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote malicious users to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to...
Logisphere Logisphere 0.9.9j
NA
CVE-2004-2518
Gattaca Server 2003 1.1.10.0 allows remote malicious users to obtain sensitive information via (1) a trailing null byte ("%00") to a URL or (2) an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message.
Geeos Team Gattaca Server 2003 1.1.10.0
NA
CVE-2004-2385
EMU Webmail 5.2.7 allows remote malicious users to obtain sensitive path information (home directory) via an HTTP request for init.emu.
Emumail Emu Webmail 5.2.7
NA
CVE-2005-4622
Directory traversal vulnerability in eFileGo 3.01 allows remote malicious users to execute arbitrary code, read arbitrary files, and upload arbitrary files via a ... (triple dot) in (1) the URL on port 608 and (2) the argument to upload.exe.
Efilego Efilego 3.0.1
NA
CVE-2004-2528
Cross-site scripting (XSS) vulnerability in sresult.exe in Webcam Watchdog 4.0.1a allows remote malicious users to inject arbitrary web script or HTML via the cam parameter.
Webcam Corp Webcam Watchdog 4.0.1a
NA
CVE-2004-2253
Directory traversal vulnerability in user.cgi in SurgeLDAP 1.0g and previous versions allows remote malicious users to read arbitrary files via a .. in the page parameter of the show command.
Netwin Surgeldap 1.0dNetwin Surgeldap 1.0eNetwin Surgeldap 1.0g
NA
CVE-2004-2310
Cross-site scripting (XSS) vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows remote malicious users to inject arbitrary web script or HTML via a Domino command in the Quick Console.
Ibm Lotus Domino 6.5.1
NA
CVE-2004-2311
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to create folders or determine the existence of files via a .. (dot dot) in the new folder dialog.
Ibm Lotus Domino 6.5.1
NA
CVE-2004-2334
Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote malicious users to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail.fcgi, (2) the folder parameter in emumail.fcgi, or Javascript in the (3) u...
Emumail Emu Webmail 5.2.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook