漏洞描述
AtMail是一个开源的WebMail客户端。它提供“清爽”的Ajax Webmail界面,支持通信录管理,并且支持IMAP。AtMail存在过滤不完全的情况,造成存在反射型XSS漏洞
AtMail 6.5.0反射型XSS漏洞(CVE-2022-30776)
PoC代码
暂无相关漏洞推荐
- dpanel /api/app/compose/get-from-uri 文件读取漏洞(CVE-2025-53363)
- Fortinet FortiWeb /api/v2.0/cmdb/system/admin%3f/../../../../../cgi-bin/fwbcgi 权限绕过漏洞(CVE-2025-64446/CVE-2025-58034)
- POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
- POC CVE-2025-61757: Oracle Identity Manager REST WebServices - Authentication Bypass
- POC CVE-2025-9316: N-central - Authentication Bypass
- POC CVE-2024-37656: GnuBoard5 5.5.16 - Open Redirect
- POC CVE-2025-64446: FortiWeb - Authentication Bypass
- WordPress Verbalize WP 存在任意文件上传漏洞(CVE-2024-49668)
- Fortinet FortiWeb /api/v2.0/cmdb/system/admin%3f/../../../../../cgi-bin/fwbcgi 权限绕过漏洞(CVE-2025-64446)
- Fortiweb 存在路径穿越漏洞(CVE-2025-64446)
- (CVE-2025-4617)Palo Alto Networks Prisma Browser截图控制绕过漏洞
- (CVE-2025-4618)Palo Alto Networks Prisma Browser敏感信息泄露漏洞
- POC Fortinet FortiWeb 未授权身份验证绕过漏洞(CVE-2025-64446)