Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:56 p.m.9 views

CVE-2020-18723

Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...

5.4CVSS5.9AI score0.03799EPSS
Exploits2
Packet Storm
Packet Storm
added 2021/02/08 12:0 a.m.615 views

Alt-N MDaemon Webmail 20.0.0 Cross Site Scripting

Exploit Title: Alt-N MDaemon webmail 20.0.0 - 'Contact name' Stored Cross Site Scripting XSS Date: 2020-08-25 Exploit Author: Kailash Bohara Vendor Homepage: https://www.altn.com/ Version: Mdaemon webmail 3. We can see execution code and after saving it, each time we visits the distribution list...

3.5CVSS5.5AI score0.03799EPSS
Exploits3
NVD
NVD
added 2021/02/03 6:15 p.m.26 views

CVE-2020-18723

Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...

5.4CVSS0.03799EPSS
Exploits2References3
OSV
OSV
added 2021/02/03 6:15 p.m.4 views

CVE-2020-18723

Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...

5.4CVSS6.2AI score0.03799EPSS
Exploits2References3
CVE
CVE
added 2021/02/03 5:25 p.m.68 views

CVE-2020-18723

MDaemon Webmail 19.5.5 is affected by a Stored XSS in the file attachment field. The vulnerability allows an attacker to execute code on the email recipient’s side when forwarding an email. No remediation or patch details are provided in the connected documents. Exploitation status is not specifi...

5.4CVSS5.2AI score0.03799EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder