Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-63577
HistoryApr 07, 2022 - 12:00 a.m.

Rumble Mail Server Cross-Site Scripting Vulnerability

2022-04-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12

0.001 Low

EPSS

Percentile

38.9%

JSON

Rumble Mail Server is a mail server suite for SMTP (ESMTPSA), HTTP, POP3 and IMAP4v1 by Daniel Gruno, a personal developer.A cross-site scripting vulnerability exists in Rumble Mail Server version 0.51.3135, which stems from the username parameter’s lack of data validation filtering for user The vulnerability stems from a lack of checksum filtering of user-supplied data and output data in the username parameter. An attacker could exploit this vulnerability to execute JavaScript code on the client side.

Related

cvelist 1
cve 1
prion 1
nvd 1
cvelist
cvelist
CVE-2021-43462
2022-04-04 15:39:22
cve
cve
CVE-2021-43462
2022-04-04 16:15:08
prion
prion
Cross site scripting
2022-04-04 16:15:00
nvd
nvd
CVE-2021-43462
2022-04-04 16:15:08

0.001 Low

EPSS

Percentile

38.9%

JSON
Related for CNVD-2022-63577
cvelist1cve1prion1nvd1