CVE-2018-16793

EPSS 2.07% · P84 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-16793

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Rollup 18 for Microsoft Exchange Server 2010 SP3 and previous versions has an SSRF vulnerability via the username parameter in /owa/auth/logon.aspx in the OWA (Outlook Web Access) login page.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft Exchange Server 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft Exchange Server是美国微软（Microsoft）公司的一套电子邮件服务程序。它提供邮件存取、储存、转发，语音邮件，邮件过滤筛选等功能。 Microsoft Exchange Server 2010 SP3 Rollup 18及之前版本中存在代码问题漏洞。远程攻击者可利用该漏洞向任意攻击者制定的远程服务器发送请求。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-16793

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-16793

请登录查看更多情报信息。

http://www.securityfocus.com/bid/105386vdb-entryx_refsource_BID
https://seclists.org/bugtraq/2018/Sep/38mailing-listx_refsource_BUGTRAQ
http://seclists.org/fulldisclosure/2018/Sep/20mailing-listx_refsource_FULLDISC
https://nvd.nist.gov/vuln/detail/CVE-2018-16793

Same Patch Batch · n/a · 2018-09-21 · 48 CVEs total

CVE-2018-11240		SoftCase T-Router 安全漏洞
CVE-2018-16786		DedeCMS 跨站脚本漏洞
CVE-2018-17292		WAVM 安全漏洞
CVE-2018-17298		Enalean Tuleap 安全漏洞
CVE-2018-17300		CuppaCMS 跨站脚本漏洞
CVE-2018-17301		EspoCRM 跨站脚本漏洞
CVE-2018-17302		EspoCRM 跨站脚本漏洞
CVE-2018-17283		ZOHO ManageEngine OpManager 安全漏洞
CVE-2018-17297		Hutool 安全漏洞
CVE-2018-11241		SoftCase T-Router 安全漏洞
CVE-2018-16784		DedeCMS 安全漏洞
CVE-2018-3913		Samsung SmartThings Hub STH-ETH-250 video-core HTTP服务器缓冲区错误漏洞
CVE-2018-9282		Subsonic Media Server 跨站脚本漏洞
CVE-2018-16597		Linux kernel 权限许可和访问控制问题漏洞
CVE-2018-16281		Atlassian JIRA DEISER Profields - Project Custom Fields app 访问控制错误漏洞
CVE-2018-14691		Subsonic 跨站脚本漏洞
CVE-2018-14690		Subsonic 跨站脚本漏洞
CVE-2018-14689		Subsonic 跨站脚本漏洞
CVE-2018-14688		Subsonic 跨站脚本漏洞
CVE-2018-11352		Wallabag应用程序跨站脚本漏洞

Showing top 20 of 48 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-16793

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-16793

I. Basic Information for CVE-2018-16793

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-16793

III. Intelligence Information for CVE-2018-16793

Same Patch Batch · n/a · 2018-09-21 · 48 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-16793

Leave a comment