Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2020-18723
- EPSS 3.2%
- Published 03.02.2021 18:15:16
- Last modified 21.11.2024 05:08:44
Stored cross-site scripting (XSS) in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities.
5.4
CVE-2020-18724
- EPSS 0.88%
- Published 03.02.2021 18:15:16
- Last modified 21.11.2024 05:08:44
Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list.
8.8
CVE-2018-17792
- EPSS 0.2%
- Published 19.07.2019 17:15:11
- Last modified 21.11.2024 03:54:59
MDaemon Webmail (formerly WorldClient) has CSRF.
1