VYPR
Vendor

Bvrp Software

Products
2
CVEs
6
Across products
6
Status
Private

Products

2

Recent CVEs

6
  • CVE-2023-4595Nov 23, 2023
    risk 0.00cvss epss 0.01

    An information exposure vulnerability has been found, the exploitation of which could allow a remote user to retrieve sensitive information stored on the server such as credential files, configuration files, application files, etc., simply by appending any of the following…

  • CVE-2023-4594Nov 23, 2023
    risk 0.00cvss epss 0.00

    Stored XSS vulnerability. This vulnerability could allow an attacker to store a malicious JavaScript payload via GET and POST methods on multiple parameters in the MailAdmin_dll.htm file.

  • CVE-2023-4593Nov 23, 2023
    risk 0.00cvss epss 0.01

    Path traversal vulnerability whose exploitation could allow an authenticated remote user to bypass SecurityManager's intended restrictions and list a parent directory via any filename, such as a multiple ..%2F value affecting the 'dodoc' parameter in the /MailAdmin_dll.htm file.

  • CVE-2003-0266May 27, 2003
    risk 0.00cvss epss 0.03

    Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter…

  • CVE-2003-0268May 27, 2003
    risk 0.00cvss epss 0.02

    SLWebMail 3 on Windows systems allows remote attackers to identify the full path of the server via invalid requests to DLLs such as WebMailReq.dll, which reveals the path in an error message.

  • CVE-2003-0267May 27, 2003
    risk 0.00cvss epss 0.02

    ShowGodLog.dll in SLWebMail 3 on Windows systems allows remote attackers to read arbitrary files by directly calling ShowGodLog.dll with an argument specifying the full path of the target file.