Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Packet Storm
Packet Stormadded 2021/02/08 12:0 a.m.597 views

Alt-N MDaemon Webmail 20.0.0 Cross Site Scripting

Exploit Title: Alt-N MDaemon webmail 20.0.0 - 'Contact name' Stored Cross Site Scripting XSS Date: 2020-08-25 Exploit Author: Kailash Bohara Vendor Homepage: https://www.altn.com/ Version: Mdaemon webmail 3. We can see execution code and after saving it, each time we visits the distribution list...

3.5CVSS5.5AI score0.032EPSS
Exploits3
Exploit DB
Exploit DBadded 2021/02/08 12:0 a.m.256 views

Alt-N MDaemon webmail 20.0.0 - 'Contact name' Stored Cross Site Scripting (XSS)

Exploit Title: Alt-N MDaemon webmail 20.0.0 - 'Contact name' Stored Cross Site Scripting XSS Date: 2020-08-25 Exploit Author: Kailash Bohara Vendor Homepage: https://www.altn.com/ Version: Mdaemon webmail 3. We can see execution code and after saving it, each time we visits the distribution list...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2021/02/03 5:27 p.m.15 views

CVE-2020-18724

Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...

5.2AI score0.00877EPSS
Exploits2References3
CVE
CVEadded 2021/02/03 5:27 p.m.58 views

CVE-2020-18724

CVE-2020-18724 affects MDaemon Webmail 19.5.5, where an authenticated user can trigger a stored XSS in the contact name field of a distribution list; payloads are executed when opening the contact list. Public exploit details exist (PacketStorm) and a vendor security update (ALTN) is referenced f...

5.4CVSS5.1AI score0.00877EPSS
Exploits2References3Affected Software1
Circl
Circladded 2020/04/24 6:37 p.m.2 views

CVE-2017-18724

creationtimestamp| type| source ---|---|--- 2020-04-24 18:37:06+00:00| seen| https://t.me/cibsecurity/11617...

8.8CVSS8.1AI score0.00272EPSS
Exploits0References1
CVE
CVEadded 2020/04/24 1:12 p.m.41 views

CVE-2017-18724

CVE-2017-18724 affects NETGEAR D6200 (before 1.1.00.24) and R6700v2/R6800/R6900v2 (before 1.1.0.42). The vulnerability is a stack-based buffer overflow exploitable by an unauthenticated attacker. Remediation is upgrading to D6200 1.1.00.24 or R6700v2/R6800/R6900v2 to 1.1.0.42 or later; the docume...

8.8CVSS8.9AI score0.00272EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2019/11/04 8:17 p.m.40 views

CVE-2019-18724

CVE-2019-18724 is rejected/not used and does not represent an active vulnerability entry.

7.4AI score
Exploits0
Cvelist
Cvelistadded 2019/11/04 8:17 p.m.8 views

CVE-2019-18724

...

Exploits0
CVE
CVEadded 2018/10/28 12:0 a.m.43 views

CVE-2018-18724

CVE-2018-18724 affects YUNUCMS 1.1.5, with a cross-site scripting (XSS) flaw in index.php/admin/category/editcategory?id=73. Root cause and detailed impact are described as XSS; exploitation details are not provided in the documents. No remediation or patch information is included in the provided...

4.8CVSS4.9AI score0.00235EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder