Lucene search
GoogleOSV:GHSA-7CRP-P2VC-69R7HistoryMay 14, 2022 - 3:37 a.m.
Apache James Hupa Webmail application Cross-site Scripting Vulnerabilities
2022-05-1403:37:10
Google
osv.dev
5
apache james
hupa webmail
cross-site scripting
vulnerabilities
fixed
version 0.0.3
EPSS
0.001
Percentile
50.6%
Two XSS vulnerabilities were fixed in message list and view in the Hupa Webmail application from the Apache James project. An attacker could send a carefully crafted email to a user of Hupa which would trigger a XSS when the email was opened or when a list of messages were viewed. This issue was addressed in Hupa 0.0.3.
Related
nvd
nvd
CVE-2012-3536
2018-02-27 19:29:00
prion
prion
Cross site scripting
2018-02-27 19:29:00
veracode
veracode
Cross-site Scripting (XSS)
2018-11-07 08:22:08
cvelist
cvelist
CVE-2012-3536
2018-02-27 19:00:00
cve
cve
CVE-2012-3536
2018-02-27 19:29:00
github
github
Apache James Hupa Webmail application Cross-site Scripting Vulnerabilities
2022-05-14 03:37:10