Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2010-3201
Disclosure Date: January 07, 2011 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
0
Attacker Value
Unknown
CVE-2008-1497
Disclosure Date: March 25, 2008 (last updated October 04, 2023)
Stack-based buffer overflow in the IMAP service in NetWin SurgeMail 38k4-4 and earlier allows remote authenticated users to execute arbitrary code via long arguments to the LSUB command.
0
