Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websense websense email security vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4605
The default configuration of the SMTP component in Websense Email Security 6.1 up to and including 7.3 enables weak SSL ciphers in the "SurfControl plc\SuperScout Email Filter\SMTP" registry key, which makes it easier for remote malicious users to obtain sensitive infor...
Websense Websense Email Security 7.0
Websense Websense Email Security 7.2
Websense Websense Email Security 7.1
Websense Websense Email Security 6.1
NA
CVE-2009-5122
The Personal Email Manager component in Websense Email Security prior to 7.2 allows remote malicious users to obtain potentially sensitive information from the JBoss status page via an unspecified query.
Websense Websense Email Security
Websense Websense Email Security 7.0
Websense Websense Email Security 6.1
NA
CVE-2009-5130
The Rules Service in Websense Email Security prior to 7.1 allows remote malicious users to cause a denial of service (service crash) via an attachment with a crafted size.
Websense Websense Email Security 6.1
Websense Websense Email Security
NA
CVE-2009-5131
The Receive Service in Websense Email Security prior to 7.1 does not recognize domain extensions in the blacklist, which allows remote malicious users to bypass intended access restrictions and send e-mail messages via an SMTP session.
Websense Websense Email Security
Websense Websense Email Security 6.1
NA
CVE-2009-3748
Multiple cross-site scripting (XSS) vulnerabilities in the Web Administrator in Websense Personal Email Manager 7.1 before Hotfix 4 and Email Security 7.1 before Hotfix 4 allow remote malicious users to inject arbitrary web script or HTML via the (1) FileName, (2) IsolatedMessage...
Websense Personal Email Manager 7.1
Websense Websense Email Security 7.1
1 EDB exploit
NA
CVE-2009-5121
Websense Email Security 7.1 before Hotfix 4 allows remote malicious users to bypass the sender-based blacklist by using the 8BITMIME EHLO keyword in the SMTP session.
Websense Websense Email Security 7.1
NA
CVE-2009-3749
The Web Administrator service (STEMWADM.EXE) in Websense Personal Email Manager 7.1 before Hotfix 4 and Email Security 7.1 before Hotfix 4 allows remote malicious users to cause a denial of service (crash) by sending a HTTP GET request to TCP port 8181 and closing the socket befo...
Websense Personal Email Manager 7.1
Websense Email Security 7.1
1 EDB exploit
NA
CVE-2015-2748
Websense TRITON AP-WEB prior to 8.0.0 does not properly restrict access to files in explorer_wse/, which allows remote malicious users to obtain sensitive information via a direct request to a (1) Web Security incident report or the (2) Explorer configuration (websense.ini) file.
Websense Triton Ap Email
Websense Triton Ap Web
Websense V-series Appliances
Websense Triton Ap Data
NA
CVE-2015-2702
Cross-site scripting (XSS) vulnerability in the Message Log in the Email Security Gateway in Websense TRITON AP-EMAIL prior to 8.0.0 and V-Series 7.7 appliances allows remote malicious users to inject arbitrary web script or HTML via the sender address in an email.
Websense Triton Ap Web
Websense Triton Ap Data
Websense V-series Appliances 7.7
Websense Triton Ap Email
NA
CVE-2015-2765
The Email Security Gateway in Websense TRITON AP-EMAIL prior to 8.0.0 allows remote malicious users to conduct clickjacking attacks via unspecified vectors.
Websense Triton Ap Email
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started