Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1
CVE-2026-25529
- EPSS 0.04%
- Veröffentlicht 12.03.2026 16:35:33
- Zuletzt bearbeitet 19.03.2026 17:53:51
Postal is an open source SMTP server. Postal versions less than 3.3.5 had a HTML injection vulnerability that allowed unescaped data to be included in the admin interface. The primary way for unescaped data to be added is via the API's "send/raw" met...
5.3
CVE-2024-27938
- EPSS 0.63%
- Veröffentlicht 11.03.2024 22:15:55
- Zuletzt bearbeitet 10.04.2025 18:15:14
Postal is an open source SMTP server. Postal versions less than 3.0.0 are vulnerable to SMTP Smuggling attacks which may allow incoming e-mails to be spoofed. This, in conjunction with a cooperative outgoing SMTP service, would allow for an incoming ...
1