|
305131
|
6.1 |
MEDIUM
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter password is non-persistent in 10.2.0.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5340
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305132
|
6.1 |
MEDIUM
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][uid] is non-persistent in 10.1.3 and 10.2.0.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5339
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305133
|
6.1 |
MEDIUM
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][action] is non-persistent in 10.1.3 and 10.2.0.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5338
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305134
|
6.1 |
MEDIUM
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][controller] is non-persistent in 10.1.3 and 10.2.0.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5337
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305135
|
6.1 |
MEDIUM
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: admin/login.html with the parameter username is persistent in 10.2.0.
|
CWE-79
Cross-site Scripting
|
CVE-2010-5336
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305136
|
7.5 |
HIGH
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of confidential data of IceWarp Mailserver and the operating system. Input passed via a certain parame…
|
CWE-22
Path Traversal
|
CVE-2010-5335
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305137
|
7.5 |
HIGH
Network
|
icewarp
|
webclient
|
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of confidential data of IceWarp Mailserver and the operating system. Input passed via a certain parame…
|
CWE-22
Path Traversal
|
CVE-2010-5334
|
2024-11-21 10:23 |
2019-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305138
|
9.8 |
CRITICAL
Network
|
integard_home_project
integard_pro_project
|
integard_home
integard_pro
|
The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x before 2.2.0.9037 has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code exec…
|
CWE-120
Classic Buffer Overflow
|
CVE-2010-5333
|
2024-11-21 10:23 |
2019-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305139
|
5.6 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. When searching for a free entry in either mlx4_register_vlan() or mlx4_register_mac(), and there …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-5332
|
2024-11-21 10:23 |
2019-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
305140
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could cause an off by one (buffer overflow) problem. NOTE: At least one Linux maintainer believes that this…
|
CWE-193
Off-by-one Error
|
CVE-2010-5331
|
2024-11-21 10:23 |
2019-07-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
