VYPR

Smartermail

by Smartertools

CVEs (29)

  • CVE-2026-7807HigMay 8, 2026
    risk 0.53cvss 8.1epss 0.00

    SmarterTools SmarterMail builds prior to 9560 contain a local file inclusion vulnerability in the /api/v1/report/summary/{type} API endpoint that allows authenticated users to read arbitrary .json files on the system. Attackers can exploit this vulnerability combined with weak…

  • CVE-2026-26930HigFeb 16, 2026
    risk 0.47cvss 7.2epss 0.00

    SmarterTools SmarterMail before 9526 allows XSS via MAPI requests.

  • CVE-2026-40514MedApr 27, 2026
    risk 0.38cvss 5.9epss 0.00

    SmarterTools SmarterMail builds prior to 9610 contain a cryptographic weakness in the file and email sharing endpoints that use DES-CBC encryption with keys and initialization vectors derived from System.Random seeded with insufficient entropy, reducing the seed space to…

  • CVE-2025-52691KEVDec 29, 2025
    risk 0.28cvss epss 0.85

    Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbitrary files to any location on the mail server, potentially enabling remote code execution.

  • CVE-2026-24423KEVJan 23, 2026
    risk 0.25cvss epss 0.88

    SmarterTools SmarterMail versions prior to build 9511 contain an unauthenticated remote code execution vulnerability in the ConnectToHub API method. The attacker could point the SmarterMail to the malicious HTTP server, which serves the malicious OS command. This command will be…

  • CVE-2026-23760KEVJan 22, 2026
    risk 0.25cvss epss 0.96

    SmarterTools SmarterMail versions prior to build 9511 contain an authentication bypass vulnerability in the password reset API. The force-reset-password endpoint permits anonymous requests and fails to verify the existing password or a reset token when resetting system…

  • CVE-2019-7214Apr 24, 2019
    risk 0.10cvss epss 0.83

    SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthenticated attacker could run commands on the server when port 17001 was remotely accessible. This port is not accessible remotely by default after applying the Build 6985 patch.

  • CVE-2012-2578Sep 19, 2012
    risk 0.03cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in SmarterMail 9.2 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a JavaScript alert function used in conjunction with the fromCharCode method, (2) a SCRIPT element, (3) a…

  • CVE-2010-3486Sep 22, 2010
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) %255c (double-encoded backslash) in the name parameter.

  • CVE-2008-1854Apr 16, 2008
    risk 0.03cvss epss 0.03

    Unspecified vulnerability in SmarterMail Web Server (SMWebSvr.exe) in SmarterMail 5.0.2999 allows remote attackers to cause a denial of service (service termination) via a long HTTP (1) GET, (2) HEAD, (3) PUT, (4) POST, or (5) TRACE request. NOTE: the provenance of this…

  • CVE-2008-0872Feb 21, 2008
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in SmarterTools SmarterMail Enterprise 4.3 allows remote attackers to inject arbitrary web script or HTML via a STYLE attribute of an element in the Subject field of an e-mail message.

  • CVE-2019-7213Apr 24, 2019
    risk 0.01cvss epss 0.42

    SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail server. This could lead to command execution on the server for instance by…

  • CVE-2026-25067Jan 29, 2026
    risk 0.00cvss epss 0.00

    SmarterTools SmarterMail versions prior to build 9518 contain an unauthenticated path coercion vulnerability in the background-of-the-day preview endpoint. The application base64-decodes attacker-supplied input and uses it as a filesystem path without validation. On Windows…

  • CVE-2023-48115Dec 21, 2023
    risk 0.00cvss epss 0.00

    SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored DOM XSS because an XSS protection mechanism is skipped when messageHTML and messagePlainText are set in the same request.

  • CVE-2023-48116Dec 21, 2023
    risk 0.00cvss epss 0.00

    SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS via a crafted description of a Calendar appointment.

  • CVE-2023-48114Dec 21, 2023
    risk 0.00cvss epss 0.00

    SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored XSS by using image/svg+xml and an uploaded SVG document. This occurs because the application tries to allow youtube.com URLs, but actually allows youtube.com followed by an @ character and an…

  • CVE-2021-43977Nov 17, 2021
    risk 0.00cvss epss 0.01

    SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows XSS.

  • CVE-2021-32234Nov 17, 2021
    risk 0.00cvss epss 0.02

    SmarterTools SmarterMail 16.x through 100.x before 100.0.7803 allows remote code execution.

  • CVE-2021-40377Sep 8, 2021
    risk 0.00cvss epss 0.00

    SmarterTools SmarterMail 16.x before build 7866 has stored XSS. The application fails to sanitize email content, thus allowing one to inject HTML and/or JavaScript into a page that will then be processed and stored by the application.

  • CVE-2020-29548Aug 17, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in SmarterTools SmarterMail through 100.0.7537. Meddler-in-the-middle attackers can pipeline commands after a POP3 STLS command, injecting plaintext commands into an encrypted user session.

Page 1 of 2