2 results (0.007 seconds)
CVSS: 6.1EPSS: 0%CPEs: 18EXPL: 1CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 18EXPL: 1CVE-2006-2484
https://notcve.org/view.php?id=CVE-2006-2484
19 May 2006 — Cross-site scripting (XSS) vulnerability in index.html in IceWarp WebMail 5.5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the PHPSESSID parameter. • http://securityreason.com/securityalert/925 •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2005-0322
https://notcve.org/view.php?id=CVE-2005-0322
10 Feb 2005 — MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 and Mail Server 7.6.4r with Icewarp Mail Server 5.3.2 uses weak encryption in the (1) users.cfg, (2) settings.cfg, (3) users.dat or (4) user.dat files, which allows local users to extract the passwords. • http://marc.info/?l=bugtraq&m=110693950205007&w=2 •