GCVE - cpe:2.3:a:n/a:mailcleaner:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:mailcleaner:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Mailcleaner (`24d50a8b-7a82-5e05-b7b1-739b57e22537`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-3196`	vulnerable	2026-06-08 06:41:52.671072	MailCleaner SOAP Service dumpConfiguration os command injection MEDIUM (6.7) A vulnerability was found in MailCleaner up to 2023.03.14. It has been declared as critical. This vulnerability affects the function getStats/Services_silentDump/Services_stopStartMTA/Config_saveDateTime/Config_hostid/Logs_StartGetStat/dumpConfiguration of the component SOAP Service. The manipulation leads to os command injection. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-262312. Published: 2024-04-29T06:22:44.534Z Updated: 2024-08-01T20:05:07.551Z Open on db.gcve.eu Reference links https://vuldb.com/?id.262312 https://vuldb.com/?ctiid.262312 https://modzero.com/en/advisories/mz-24-01-mailcleaner/ https://modzero.com/static/MZ-24-01_modzero_MailCleaner.pdf https://github.com/MailCleaner/MailCleaner/pull/601	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-3195`	vulnerable	2026-06-08 06:41:52.670557	MailCleaner Admin Endpoints path traversal MEDIUM (4.7) A vulnerability was found in MailCleaner up to 2023.03.14. It has been classified as critical. This affects an unknown part of the component Admin Endpoints. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-262311. Published: 2024-04-29T06:22:42.675Z Updated: 2024-08-01T20:05:07.504Z Open on db.gcve.eu Reference links https://vuldb.com/?id.262311 https://vuldb.com/?ctiid.262311 https://modzero.com/en/advisories/mz-24-01-mailcleaner/ https://modzero.com/static/MZ-24-01_modzero_MailCleaner.pdf https://github.com/MailCleaner/MailCleaner/pull/601	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-3194`	vulnerable	2026-06-08 06:41:52.669897	MailCleaner Log File Endpoint cross site scripting MEDIUM (4.3) A vulnerability was found in MailCleaner up to 2023.03.14 and classified as problematic. Affected by this issue is some unknown functionality of the component Log File Endpoint. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. VDB-262310 is the identifier assigned to this vulnerability. Published: 2024-04-29T06:22:40.854Z Updated: 2024-08-01T20:05:07.997Z Open on db.gcve.eu Reference links https://vuldb.com/?id.262310 https://vuldb.com/?ctiid.262310 https://modzero.com/en/advisories/mz-24-01-mailcleaner/ https://modzero.com/static/MZ-24-01_modzero_MailCleaner.pdf https://github.com/MailCleaner/MailCleaner/pull/601	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-3193`	vulnerable	2026-06-08 06:41:52.669431	MailCleaner Admin Endpoints os command injection HIGH (8.8) A vulnerability has been found in MailCleaner up to 2023.03.14 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Admin Endpoints. The manipulation leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-262309 was assigned to this vulnerability. Published: 2024-04-29T06:22:38.861Z Updated: 2024-08-01T20:05:07.809Z Open on db.gcve.eu Reference links https://vuldb.com/?id.262309 https://vuldb.com/?ctiid.262309 https://modzero.com/en/advisories/mz-24-01-mailcleaner/ https://modzero.com/static/MZ-24-01_modzero_MailCleaner.pdf https://github.com/MailCleaner/MailCleaner/pull/601	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-3192`	vulnerable	2026-06-08 06:41:52.668919	MailCleaner Admin Interface cross site scripting MEDIUM (4.3) A vulnerability, which was classified as problematic, was found in MailCleaner up to 2023.03.14. Affected is an unknown function of the component Admin Interface. The manipulation as part of Mail Message leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-262308. Published: 2024-04-29T06:22:37.114Z Updated: 2024-08-01T20:05:08.206Z Open on db.gcve.eu Reference links https://vuldb.com/?id.262308 https://vuldb.com/?ctiid.262308 https://modzero.com/en/advisories/mz-24-01-mailcleaner/ https://modzero.com/static/MZ-24-01_modzero_MailCleaner.pdf https://github.com/MailCleaner/MailCleaner/pull/601	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-3191`	vulnerable	2026-06-08 06:41:52.667717	db.gcve.eu details were skipped to keep the page responsive. Open on db.gcve.eu	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.