CVE-2010-5335
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-5335
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of confidential data of IceWarp Mailserver and the operating system. Input passed via a certain parameter (script to basic/minimizer/index.php) is not properly sanitised and can therefore be exploited to browse the partition where IceWarp is installed (or the whole system) and read arbitrary files.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IceWarp Webclient 路径遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IceWarp Mail Server是美国IceWarp公司的一款邮件服务器产品。该产品支持电子邮件归档、SmartAttach附件、自动迁移等。IceWarp Webclient是一个基于Web的IceWarp客户端程序。 IceWarp Webclient 10.2.1之前版本中存在路径遍历漏洞。该漏洞源于网络系统或产品未能正确地过滤资源或文件路径中的特殊元素。攻击者可利用该漏洞访问受限目录之外的位置。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-5335
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-5335
Please Login to view more intelligence information
Same Patch Batch · n/a · 2019-10-11 · 44 CVEs total
| CVE-2015-9481 | WordPress ThemeMakers Diplomat|Political theme 信息泄露漏洞 | |
| CVE-2019-17504 | Kirona Solutions Dynamic Resource Scheduling 跨站脚本漏洞 | |
| CVE-2019-17503 | Kirona Solutions Dynamic Resource Scheduling 信息泄露漏洞 | |
| CVE-2019-14510 | Kaseya VSA RMM 安全漏洞 | |
| CVE-2010-5337 | IceWarp Webclient 跨站脚本漏洞 | |
| CVE-2010-5338 | IceWarp Webclient 跨站脚本漏洞 | |
| CVE-2010-5339 | IceWarp Webclient 跨站脚本漏洞 | |
| CVE-2010-5340 | IceWarp Webclient 跨站脚本漏洞 | |
| CVE-2019-17499 | Compal CH7465LG 操作系统命令注入漏洞 | |
| CVE-2010-5336 | IceWarp Webclient 跨站脚本漏洞 | |
| CVE-2019-17059 | Sophos Cyberoam firewall appliance CyberoamOS 注入漏洞 | |
| CVE-2015-9482 | WordPress ThemeMakers Car Dealer / Auto Dealer Responsive theme 信息泄露漏洞 | |
| CVE-2015-9483 | WordPress ThemeMakers Invento Responsive Gallery/Architecture Template 信息泄露漏洞 | |
| CVE-2015-9484 | WordPress ThemeMakers Accio One Page Parallax Responsive theme 信息泄露漏洞 | |
| CVE-2015-9485 | WordPress ThemeMakers Accio Responsive Parallax One Page Site Template信息泄露漏洞 | |
| CVE-2015-9486 | WordPress ThemeMakers Axioma Premium Responsive theme 信息泄露漏洞 | |
| CVE-2015-9487 | WordPress ThemeMakers Almera Responsive Portfolio theme 信息泄露漏洞 | |
| CVE-2015-9488 | WordPress ThemeMakers Almera Responsive Portfolio Site Template 信息泄露漏洞 | |
| CVE-2015-9489 | WordPress ThemeMakers Goodnex Premium Responsive theme 信息泄露漏洞 | |
| CVE-2015-9490 | WordPress ThemeMakers GamesTheme Premium theme 信息泄露漏洞 |
Showing top 20 of 44 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2010-5335
No comments yet