Bloop

Airmail 3

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2018-15668

  • EPSS 0.3%
  • Published 21.08.2018 23:29:00
  • Last modified 21.11.2024 03:51:14

An issue was discovered in Bloop Airmail 3 3.5.9 for macOS. The "send" command in the airmail:// URL scheme allows an external application to send arbitrary emails from an active account. URL parameters for the "send" command with the "attachment_" p...

5.3

CVE-2018-15669

  • EPSS 0.24%
  • Published 21.08.2018 23:29:00
  • Last modified 21.11.2024 03:51:14

An issue was discovered in Bloop Airmail 3 3.5.9 for macOS. Its primary WebView instance implements "webView:decidePolicyForNavigationAction:request:frame:decisionListener:" such that requests from HTMLIFrameElements are blacklisted. However, other s...