Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zarafa webapp 1.6 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2014-5447
Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which allows local users to obtain sensitive information by reading the PHP session files. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-0103.
Zarafa Webapp 1.6
Zarafa Zarafa 7.1.10
2.1
CVSSv2
CVE-2014-0103
WebAccess in Zarafa prior to 7.1.10 and WebApp prior to 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.
Zarafa Zarafa 7.1.1
Zarafa Zarafa 7.1.3
Zarafa Zarafa 7.1.4
Zarafa Zarafa 7.0.1
Zarafa Webapp
Zarafa Zarafa 7.0.13
Zarafa Zarafa 7.0
Zarafa Zarafa 7.0.10
Zarafa Zarafa 7.0.8
Zarafa Zarafa 7.0.6
Zarafa Zarafa 7.0.5
Zarafa Zarafa 7.0.7
Fedoraproject Fedora 20
Zarafa Zarafa 7.0.2
Zarafa Zarafa 7.1.0
Zarafa Zarafa 7.1.2
Zarafa Zarafa 7.0.12
Zarafa Zarafa 7.0.11
Zarafa Zarafa 7.0.3
Zarafa Zarafa
Zarafa Zarafa 7.0.4
Fedoraproject Fedora 19
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started