Known Vulnerabilities for Aurora by Afterlogic
Listed below are 5 of the newest known vulnerabilities associated with "Aurora" by "Afterlogic".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-11401 json | An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced Go Wrapper for Amazon Aurora PostgreSQL will a... | Not Provided | 2026-06-05 | 2026-06-05 |
| CVE-2026-11400 json | An untrusted search path issue in the GlobalDatabasePlugin in the AWS Advanced JDBC Wrapper for Amazon Aurora PostgreSQL will... | Not Provided | 2026-06-05 | 2026-06-05 |
| CVE-2023-43176 json | A deserialization vulnerability in Afterlogic Aurora Files v9.7.3 allows attackers to execute arbitrary code via supplying a ... | Not Provided | 2023-10-03 | 2026-07-05 |
| CVE-2021-26294 json | An issue was discovered in AfterLogic Aurora through 7.7.9 and WebMail Pro through 7.7.9. They allow directory traversal to r... | 7.5 - HIGH | 2021-03-07 | 2021-03-11 |
| CVE-2021-26293 json | An issue was discovered in AfterLogic Aurora through 8.5.3 and WebMail Pro through 8.5.3, when DAV is enabled. They allow dir... | 9.8 - CRITICAL | 2021-03-04 | 2021-03-11 |
| CVE-2019-19129 json | Afterlogic WebMail Pro 8.3.11, and WebMail in Afterlogic Aurora 8.3.11, allows Remote Stored XSS via an attachment name. | 6.1 - MEDIUM | 2019-11-26 | 2019-12-09 |
| CVE-2019-16238 json | Afterlogic Aurora through 8.3.9-build-a3 has XSS that can be leveraged for session hijacking by retrieving the session cookie... | 6.1 - MEDIUM | 2019-09-12 | 2019-09-13 |
| CVE-2017-14597 json | AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.... | 4.8 - MEDIUM | 2017-09-19 | 2017-09-22 |
| CVE-2010-0249 json | Use-after-free vulnerability in Microsoft Internet Explorer 6, 6 SP1, 7, and 8 on Windows 2000 SP4; Windows XP SP2 and SP3; W... | 4.8 - MEDIUM | 2010-01-15 | 2026-05-21 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Afterlogic | Aurora | 8.6.0 | |||
| Application | Afterlogic | Aurora | 8.5.4 | |||
| Application | Afterlogic | Aurora | 8.5.3 | |||
| Application | Afterlogic | Aurora | 8.5.2 | |||
| Application | Afterlogic | Aurora | 8.5.1 | |||
| Application | Afterlogic | Aurora | 8.5.0 | |||
| Application | Afterlogic | Aurora | 8.4.0 | |||
| Application | Afterlogic | Aurora | 8.3.9 | |||
| Application | Afterlogic | Aurora | 8.3.8 | |||
| Application | Afterlogic | Aurora | 8.3.7 | |||
| Application | Afterlogic | Aurora | 8.3.6 | |||
| Application | Afterlogic | Aurora | 8.3.5 | |||
| Application | Afterlogic | Aurora | 8.3.4 | |||
| Application | Afterlogic | Aurora | 8.3.3 | |||
| Application | Afterlogic | Aurora | 8.3.20 | |||
| Application | Afterlogic | Aurora | 8.3.2 | |||
| Application | Afterlogic | Aurora | 8.3.19 | |||
| Application | Afterlogic | Aurora | 8.3.18 | |||
| Application | Afterlogic | Aurora | 8.3.16 | |||
| Application | Afterlogic | Aurora | 8.3.15 |