NotCVE - vendor:"Open Webmail" product:"Open Webmail" version:"2.41"

Page 2 of 7 results (0.034 seconds)

CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0

CVE-2005-1435

https://notcve.org/view.php?id=CVE-2005-1435

Open WebMail (OWM) before 2.51 20050430 allows remote authenticated users to execute arbitrary commands via shell metacharacters in a filename. • http://secunia.com/advisories/15225 http://securitytracker.com/id?1013859 http://sourceforge.net/forum/message.php?msg_id=3128678 •

CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0

CVE-2005-0445

https://notcve.org/view.php?id=CVE-2005-0445

Cross-site scripting (XSS) vulnerability in Open WebMail 2.x allows remote attackers to inject arbitrary HTML or web script via the domain name parameter (logindomain) in the login page. • http://secunia.com/advisories/14253 http://securitytracker.com/id?1013172 http://turtle.ee.ncku.edu.tw/openwebmail/doc/changes.txt http://turtle.ee.ncku.edu.tw/openwebmail/download/cert/patches/SA-05:01/2.5x.patch http://www.securityfocus.com/bid/12547 https://exchange.xforce.ibmcloud.com/vulnerabilities/19335 •

1 2