Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nocc nocc 1.0 vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2006-0891
Multiple directory traversal vulnerabilities in NOCC Webmail 1.0 allow remote malicious users to include arbitrary files via .. (dot dot) sequences and a trailing NULL (%00) byte in (1) the _SESSION['nocc_theme'] parameter in (a) html/footer.php; and (2) the lang and (3...
Nocc Nocc 1.0
1 EDB exploit
668
VMScore
CVE-2006-0892
NOCC Webmail 1.0 stores e-mail attachments in temporary files with predictable filenames, which makes it easier for remote malicious users to execute arbitrary code by accessing the e-mail attachment via directory traversal vulnerabilities.
Nocc Nocc 1.0
445
VMScore
CVE-2006-0893
NOCC Webmail 1.0 allows remote malicious users to obtain sensitive information via a direct request to (1) the profiles directory, which leaks e-mail addresses contained in filenames of profiles, and (2) the tmp directory, which lists names of uploaded attachments.
Nocc Nocc 1.0
450
VMScore
CVE-2006-0894
Multiple cross-site scripting (XSS) vulnerabilities in NOCC Webmail 1.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the html_error_occurred parameter in error.php, (2) html_filter_select parameter in filter_prefs.php, (3) html_no_mail parameter in ...
Nocc Nocc 1.0
4 EDB exploits
445
VMScore
CVE-2006-0895
NOCC Webmail 1.0 allows remote malicious users to obtain the installation path via a direct request to html/header.php.
Nocc Nocc 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started