CVSS: 6.5EPSS: 11%CPEs: 3EXPL: 5CVE-2005-4558 – IceWarp Universal WebMail - '/mail/index.html?lang_settings' Remote File Inclusion
https://notcve.org/view.php?id=CVE-2005-4558
IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, does not properly restrict acceptable values for the language parameter to mail/settings.html before it is stored in a database, which can allow remote authenticated users to include arbitrary PHP code via a URL in a modified lang_settings parameter to mail/index.html. • https://www.exploit-db.com/exploits/26983 https://www.exploit-db.com/exploits/26982 http://marc.info/?l=full-disclosure&m=113570229524828&w=2 http://secunia.com/advisories/17046 http://secunia.com/advisories/17865 http://secunia.com/secunia_research/2005-62/advisory http://securitytracker.com/id?1015412 http://www.osvdb.org/22080 http://www.osvdb.org/22081 http://www.securityfocus.com/archive/1/420255/100/0/threaded http://www.securityfocus.com/bid/16069 https:&# •
CVSS: 7.5EPSS: 11%CPEs: 3EXPL: 5CVE-2005-4556 – IceWarp Universal WebMail - '/accounts/inc/include.php' Multiple Remote File Inclusions
https://notcve.org/view.php?id=CVE-2005-4556
PHP remote file include vulnerability in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, when register_globals is enabled, allows remote attackers to include arbitrary local and remote PHP files via a URL in the (1) lang_settings and (2) language parameters in (a) accounts/inc/include.php and (b) admin/inc/include.php. • https://www.exploit-db.com/exploits/26979 https://www.exploit-db.com/exploits/26980 http://marc.info/?l=full-disclosure&m=113570229524828&w=2 http://secunia.com/advisories/17046 http://secunia.com/advisories/17865 http://secunia.com/secunia_research/2005-62/advisory http://securitytracker.com/id?1015412 http://www.osvdb.org/22077 http://www.osvdb.org/22078 http://www.securityfocus.com/archive/1/420255/100/0/threaded http://www.securityfocus.com/bid/16069 •
CVSS: 5.0EPSS: 1%CPEs: 3EXPL: 4CVE-2005-4557 – IceWarp Universal WebMail - '/dir/include.html?lang' Local File Inclusion
https://notcve.org/view.php?id=CVE-2005-4557
dir/include.html in IceWarp Web Mail 5.5.1, as used by Merak Mail Server 8.3.0r and VisNetic Mail Server version 8.3.0 build 1, allows remote attackers to include arbitrary local files via a null byte (%00) in the lang parameter, possibly due to a directory traversal vulnerability. • https://www.exploit-db.com/exploits/26981 http://marc.info/?l=full-disclosure&m=113570229524828&w=2 http://secunia.com/advisories/17046 http://secunia.com/advisories/17865 http://secunia.com/secunia_research/2005-62/advisory http://securitytracker.com/id?1015412 http://www.osvdb.org/22079 http://www.securityfocus.com/archive/1/420255/100/0/threaded http://www.securityfocus.com/bid/16069 https://exchange.xforce.ibmcloud.com/vulnerabilities/23897 •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 6CVE-2005-3131 – IceWarp Web Mail 5.5.1 - 'blank.html?id' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-3131
Multiple cross-site scripting (XSS) vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to blank.html, or the createdataCX parameter to (2) calendar_d.html, (3) calendar_m.html, or (4) calendar_w.html. • https://www.exploit-db.com/exploits/26308 https://www.exploit-db.com/exploits/26309 https://www.exploit-db.com/exploits/26310 https://www.exploit-db.com/exploits/26311 http://marc.info/?l=bugtraq&m=112810385104168&w=2 http://secunia.com/advisories/17046 http://www.securityfocus.com/bid/14980 http://www.vupen.com/english/advisories/2005/1933 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3132
https://notcve.org/view.php?id=CVE-2005-3132
MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allows remote attackers to obtain sensitive information via a direct request to bwlist_inc.html, which reveals the path in an error message. • http://marc.info/?l=bugtraq&m=112810385104168&w=2 http://secunia.com/advisories/17046 http://www.vupen.com/english/advisories/2005/1933 •