Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dr_insane vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-2334
Multiple cross-site scripting (XSS) vulnerabilities in EMU Webmail 5.2.7 allow remote malicious users to inject arbitrary web script or HTML via (1) a hex-encoded value to the variable parameter in emumail.fcgi, (2) the folder parameter in emumail.fcgi, or Javascript in the (3) u...
Emumail Emu Webmail 5.2.7
1 EDB exploit
NA
CVE-2004-2385
EMU Webmail 5.2.7 allows remote malicious users to obtain sensitive path information (home directory) via an HTTP request for init.emu.
Emumail Emu Webmail 5.2.7
1 EDB exploit
NA
CVE-2004-2311
Directory traversal vulnerability in webadmin.nsf in Lotus Domino R6 6.5.1 allows local users to create folders or determine the existence of files via a .. (dot dot) in the new folder dialog.
Ibm Lotus Domino 6.5.1
1 EDB exploit
NA
CVE-2004-1887
Ada Image Server (ImgSvr) 0.4 allows remote malicious users to view directories or download files via an HTTP request with a trailing %00 (null).
Ada Imgsvr 0.4
2 EDB exploits
NA
CVE-2004-2464
Directory traversal vulnerability in ADA Image Server (ImgSvr) 0.4 allows remote malicious users to read arbitrary files or list directories via hex-encoded "..//" sequences ("%2e%2e%2f%2f"). NOTE: it was later reported that 0.6.21 and previous versions is als...
Ada Imgsvr 0.4
1 EDB exploit
NA
CVE-2004-2520
POP3 protocol in Gattaca Server 2003 1.1.10.0 allows remote authenticated users to cause a denial of service (application crash) via a large numeric value in the (1) LIST, (2) RETR, or (3) UIDL commands.
1 EDB exploit
NA
CVE-2004-2447
Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote malicious users to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or...
1st Class Internet Solutions 1st Class Mail Server 4.01
6 EDB exploits
NA
CVE-2004-2494
Cross-site scripting (XSS) vulnerability in _error in Ability Mail Server 1.18 allows remote malicious users to inject arbitrary web script or HTML via the erromsg parameter.
1 EDB exploit
NA
CVE-2004-2518
Gattaca Server 2003 1.1.10.0 allows remote malicious users to obtain sensitive information via (1) a trailing null byte ("%00") to a URL or (2) an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message.
Geeos Team Gattaca Server 2003 1.1.10.0
2 EDB exploits
NA
CVE-2004-2519
Gattaca Server 2003 1.1.10.0 allows remote malicious users to cause a denial of service (CPU consumption) via directory specifiers in the LANGUAGE parameter to (1) index.tmpl and (2) web.tmpl, such as (a) slash "/", (b) backslash "\", (c) dot ".",, (...
Geeos Team Gattaca Server 2003 1.1.10.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »