Vulnerabilities > Afterlogic > Aurora > 7.7.5

DATE CVE VULNERABILITY TITLE RISK
2021-03-07 CVE-2021-26294 Path Traversal vulnerability in Afterlogic Aurora and Webmail PRO
An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9.
network
low complexity
afterlogic CWE-22
5.0
5.0
2021-03-04 CVE-2021-26293 Path Traversal vulnerability in Afterlogic Aurora and Webmail PRO
An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled.
network
afterlogic CWE-22
6.8
6.8
2017-09-19 CVE-2017-14597 Cross-site Scripting vulnerability in Afterlogic Aurora and Webmail
AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain.
network
afterlogic CWE-79
3.5
3.5