IDCVSSSummaryLast (major) updatePublished
CVE-2021-26294 5.0
An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. They allow directory traversal to read files (such as a data/settings/settings.xml file containing admin panel credentials), as demonstrated by dav/server.php/f
11-03-2021 - 21:51 07-03-2021 - 04:15
CVE-2009-4743 4.3
Multiple cross-site scripting (XSS) vulnerabilities in history-storage.aspx in AfterLogic WebMail Pro 4.7.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) HistoryStorageObjectName and (2) HistoryKey parameters.
17-08-2017 - 01:31 26-03-2010 - 20:30
Back to Top Mark selected
Back to Top