Vulnerabilities > Icewarp > High

DATE CVE VULNERABILITY TITLE RISK
2020-07-15 CVE-2020-14066 Unrestricted Upload of File with Dangerous Type vulnerability in Icewarp Mail Server 12.3.0.1
IceWarp Email Server 12.3.0.1 allows remote attackers to upload JavaScript files that are dangerous for clients to access.
network
low complexity
icewarp CWE-434
8.8
2019-10-11 CVE-2010-5335 Path Traversal vulnerability in Icewarp Webclient 10.0/10.1.3/10.2.0
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability.
network
low complexity
icewarp CWE-22
7.5
2019-10-11 CVE-2010-5334 Path Traversal vulnerability in Icewarp Webclient 10.0/10.1.3/10.2.0
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability.
network
low complexity
icewarp CWE-22
7.5
2019-06-03 CVE-2019-12593 Path Traversal vulnerability in Icewarp Mail Server
IceWarp Mail Server through 10.4.4 is prone to a local file inclusion vulnerability via webmail/calendar/minimizer/index.php?style=..%5c directory traversal.
network
low complexity
icewarp CWE-22
7.5
2018-05-08 CVE-2015-1503 Path Traversal vulnerability in Icewarp Mail Server
Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) ..
network
low complexity
icewarp CWE-22
7.5