Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
open webmail open webmail 2.30 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-2458
Open WebMail 2.30 and previous versions, when use_syshomedir is disabled or create_syshomedir is enabled, creates new directories before authenticating, which allows remote malicious users to create arbitrary directories.
Open Webmail Open Webmail 1.7
Open Webmail Open Webmail 1.81
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 1.71
Open Webmail Open Webmail 1.8
Open Webmail Open Webmail 1.90
NA
CVE-2005-0445
Cross-site scripting (XSS) vulnerability in Open WebMail 2.x allows remote malicious users to inject arbitrary HTML or web script via the domain name parameter (logindomain) in the login page.
Open Webmail Open Webmail 2.01
Open Webmail Open Webmail 2.50
Open Webmail Open Webmail 2.41
Open Webmail Open Webmail 2.00
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 2.21
Open Webmail Open Webmail 2.10
Open Webmail Open Webmail 2.20
Open Webmail Open Webmail 2.40
Open Webmail Open Webmail 2.32
NA
CVE-2004-2284
The read_list_from_file function in vacation.pl for OpenWebmail prior to 2.32 20040629 allows remote malicious users to execute arbitrary commands via shell metacharacters in a filename argument.
Open Webmail Open Webmail 1.7
Open Webmail Open Webmail 1.81
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 2.21
Open Webmail Open Webmail 1.71
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.20
Open Webmail Open Webmail 1.8
Open Webmail Open Webmail 1.90
Open Webmail Open Webmail 2.32
NA
CVE-2006-3229
Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released prior to 05/12/2006, allows remote malicious users to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified...
Open Webmail Open Webmail 1.7
Open Webmail Open Webmail 2.41
Open Webmail Open Webmail 1.81
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 2.21
Open Webmail Open Webmail 2.51
Open Webmail Open Webmail 1.71
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.5
Open Webmail Open Webmail 2.20
Open Webmail Open Webmail 1.8
Open Webmail Open Webmail 1.90
Open Webmail Open Webmail 2.32
Open Webmail Open Webmail
NA
CVE-2006-3233
Cross-site scripting (XSS) vulnerability in openwebmail-read.pl in Open WebMail (OWM) 2.52, and other versions released prior to 06/18/2006, allows remote malicious users to inject arbitrary web script or HTML via the from field. NOTE: some third party sources have mentioned the ...
Open Webmail Open Webmail 1.7
Open Webmail Open Webmail 2.41
Open Webmail Open Webmail 1.81
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 2.21
Open Webmail Open Webmail 2.51
Open Webmail Open Webmail 1.71
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.5
Open Webmail Open Webmail 2.20
Open Webmail Open Webmail 1.8
Open Webmail Open Webmail 1.90
Open Webmail Open Webmail 2.32
Open Webmail Open Webmail
NA
CVE-2006-2190
Cross-site scripting (XSS) vulnerability in ow-shared.pl in OpenWebMail (OWM) 2.51 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the sessionid parameter in (1) openwebmail-send.pl, (2) openwebmail-advsearch.pl, (3) openwebmail-fold...
Open Webmail Open Webmail 2.01
Open Webmail Open Webmail 1.7
Open Webmail Open Webmail 2.50
Open Webmail Open Webmail
Open Webmail Open Webmail 2.41
Open Webmail Open Webmail 2.00
Open Webmail Open Webmail 1.81
Open Webmail Open Webmail 2.30
Open Webmail Open Webmail 2.21
Open Webmail Open Webmail 1.71
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.10
Open Webmail Open Webmail 2.20
Open Webmail Open Webmail 2.40
Open Webmail Open Webmail 1.8
Open Webmail Open Webmail 1.90
Open Webmail Open Webmail 2.32
NA
CVE-2004-0520
Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail prior to 1.4.3 allows remote malicious users to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.0
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.2.2
Open Webmail Open Webmail 2.30
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Open Webmail Open Webmail 2.31
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.5
Open Webmail Open Webmail 2.32
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.5 Dev
1 EDB exploit
NA
CVE-2004-0639
Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and previous versions allow remote malicious users to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly ...
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.0
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.2.2
Open Webmail Open Webmail 2.30
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Open Webmail Open Webmail 2.31
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.5
Open Webmail Open Webmail 2.32
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.5 Dev
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started