Marlow Tannhauser

4 exploits Active since May 2015
CVE-2015-3141 EXPLOITDB text WORKING POC
Synametrics Technologies Xeams <4.5 Build 5755 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies Xeams 4.5 Build 5755 and earlier allow remote attackers to hijack the authentication of administrators for requests that create an (1) SMTP domain or a (2) user via a request to /FrontController; or conduct cross-site scripting (XSS) attacks via the (3) domainname parameter to /FrontController, when creating a new SMTP domain configuration; the (4) txtRecipient parameter to /FrontController, when creating a new forwarder; the (5) popFetchServer, (6) popFetchUser, or (7) popFetchRecipient parameter to /FrontController, when creating a new POP3 Fetcher account; or the (8) Smtp HELO domain in the Advanced Server Configuration.
CVE-2015-3140 EXPLOITDB HIGH text WORKING POC
Synametrics SynaMan Syncrify SynTail - Cross-Site Request Forgery
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan before 3.5 Build 1451, Syncrify before 3.7 Build 856, and SynTail before 1.5 Build 567
CVSS 8.8
CVE-2015-3140 EXPLOITDB HIGH text WORKING POC
Synametrics SynaMan Syncrify SynTail - Cross-Site Request Forgery
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan before 3.5 Build 1451, Syncrify before 3.7 Build 856, and SynTail before 1.5 Build 567
CVSS 8.8
CVE-2015-3140 EXPLOITDB HIGH text WORKING POC
Synametrics SynaMan Syncrify SynTail - Cross-Site Request Forgery
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan before 3.5 Build 1451, Syncrify before 3.7 Build 856, and SynTail before 1.5 Build 567
CVSS 8.8