icewarp
Communicationscommercial
Top products
Latest CVEs
The 15 most recently published vulnerabilities affecting icewarp.
- CVE-2018-25269ICEWARP 11.0.0.0 Cross-Site Scripting via Email HTML Injection6.1
- CVE-2026-2493IceWarp collaboration Directory Traversal Information Disclosure Vulnerability7.5
- CVE-2025-14500IceWarp14 X-File-Operation Command Injection Remote Code Execution Vulnerability9.8
- CVE-2025-14499IceWarp gmaps Cross-Site Scripting Authentication Bypass Vulnerability8.8
- CVE-2025-40632Cross-site scripting (XSS) vulnerability in IceWarp Mail Server6.1
- CVE-2025-40631HTTP host header injection vulnerability in IceWarp Mail Server6.1
- CVE-2025-40630Open redirection vulnerability in IceWarp Mail Server6.1
- CVE-2024-55218IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter.6.1
- CVE-2024-0246IceWarp Utility Download cross site scripting4.3
- CVE-2023-43319Cross Site Scripting (XSS) vulnerability in the Sign-In page of IceWarp WebClient 10.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username p...6.1
- CVE-2023-40779An issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute arbitrary code via a crafted request to the URL.6.1
- CVE-2023-41013Cross Site Scripting (XSS) in Webmail Calendar in IceWarp 10.3.1 allows remote attackers to inject arbitrary web script or HTML via the "p4" field.6.1
- CVE-2023-39598Cross Site Scripting vulnerability in IceWarp Corporation WebClient v.10.2.1 allows a remote attacker to execute arbitrary code via a crafted payload to the mid parameter.6.1
- CVE-2023-39600IceWarp 11.4.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the color parameter.6.1
- CVE-2023-39700IceWarp Mail Server v10.4.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the color parameter.6.1