CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

VulnCheck KEV•added 2024/09/19 12:0 a.m.•1 views

VulnCheck KEV: CVE-2020-27982

IceWarp 11.4.5.0 allows XSS via the language parameter...

6.1CVSS5.8AI score0.07869EPSS

Exploits2References1

CVE•added 2020/11/09 7:12 p.m.•67 views

CVE-2020-27982

CVE-2020-27982 affects IceWarp WebMail 11.4.5.0 and is an XSS vulnerability exploitable via the language parameter (e.g., /webmail/?language=). The root cause is improper handling of the language parameter, enabling arbitrary JavaScript execution in a victim’s browser (session hijacking/defacemen...

6.1CVSS5.9AI score0.07869EPSS

Exploits2References2Affected Software1

OSV•added 2020/11/02 9:15 p.m.•1 views

CVE-2020-27982

IceWarp 11.4.5.0 allows XSS via the language parameter...

6.1CVSS6.4AI score0.07869EPSS

Exploits2References2

NVD•added 2020/11/02 9:15 p.m.•7 views

CVE-2020-27982

IceWarp 11.4.5.0 allows XSS via the language parameter...

6.1CVSS6AI score0.07869EPSS

Exploits2References2

Prion•added 2020/11/02 9:15 p.m.•13 views

Cross site scripting

IceWarp 11.4.5.0 allows XSS via the language parameter...

4.3CVSS5.9AI score0.07869EPSS

Exploits2References2Affected Software1

Positive Technologies•added 2020/11/02 12:0 a.m.•12 views

PT-2020-16888 · Icewarp · Icewarp

Name of the Vulnerable Software and Affected Versions: IceWarp version 11.4.5.0 Description: The issue allows for a Cross-Site Scripting XSS attack via the language parameter. This can potentially lead to malicious script execution on the client-side. The estimated number of affected devices and...

6.1CVSS6AI score0.07869EPSS

Exploits2References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by