Vulnerabilities > Spamtitan

DATE	CVE	VULNERABILITY TITLE	RISK
2014-07-03	CVE-2014-2965	Cross-Site Scripting vulnerability in Spamtitan Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan before 6.04 allows remote attackers to inject arbitrary web script or HTML via the sortdir parameter. network spamtitan CWE-79	4.3
2012-10-08	CVE-2011-4640	Path Traversal vulnerability in Spamtitan Webtitan 3.50 Directory traversal vulnerability in logs-x.php in SpamTitan WebTitan before 3.60 allows remote authenticated users to read arbitrary files via a .. network low complexity spamtitan CWE-22	4.0
2012-10-08	CVE-2011-4639	Code Injection vulnerability in Spamtitan Webtitan 3.50 The (1) Traceroute and (2) Ping implementations in tools.php in SpamTitan WebTitan before 3.60 allow remote authenticated users to execute arbitrary commands via shell metacharacters in an argument, as demonstrated by an && (ampersand ampersand) sequence. network low complexity spamtitan CWE-94	6.5
2012-10-08	CVE-2011-4638	SQL Injection vulnerability in Spamtitan Webtitan 3.50 Multiple SQL injection vulnerabilities in SpamTitan WebTitan before 3.60 allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to login-x.php, and allow remote authenticated users to execute arbitrary SQL commands via the (2) bldomain, (3) wldomain, or (4) temid parameter to urls-x.php. network low complexity spamtitan CWE-89	7.5
2012-08-31	CVE-2011-5150	Cross-Site Scripting vulnerability in Spamtitan Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.07 and possibly earlier allow remote attackers or authenticated users to inject arbitrary web script or HTML via the (1) ipaddress or (2) domain parameter to setup-network.php, different vectors than CVE-2011-5149. network spamtitan CWE-79	4.3
2012-08-31	CVE-2011-5149	Cross-Site Scripting vulnerability in Spamtitan Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.08 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) testaddr or (2) testpass parameter to auth-settings.php; (3) hostname, (4) domainname, or (5) mailserver parameter to setup-relay.php; or (6) subnetmask or (7) defaultroute parameter to setup-network.php. network spamtitan CWE-79	4.3

Vulnerabilities > Spamtitan {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Spamtitan"}]}

Vulnerabilities > Spamtitan