34 matches found
CVE-2020-18723
Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...
Cross site scripting
Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...
CVE-2020-18724
Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...
CVE-2020-18723
MDaemon Webmail 19.5.5 is affected by a Stored XSS in the file attachment field. The vulnerability allows an attacker to execute code on the email recipient’s side when forwarding an email. No remediation or patch details are provided in the connected documents. Exploitation status is not specifi...
MDaemon Webmail 跨站脚本漏洞
MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5 that allows an attacker to execute code on the email recipient's end while forwarding an email...
MDaemon Webmail 跨站脚本漏洞
MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5, which allows attackers to execute code and XSS attacks while opening a contact list...
MDaemon Webmail Cross-Site Request Forgery Vulnerability
MDaemon Technologies MDaemon Webmail formerly known as WorldClient is a Web-based e-mail client for MDaemon Email Server from MDaemon Technologies. A cross-site request forgery vulnerability exists in MDaemon Webmail. The vulnerability stems from a WEB application that does not adequately validat...
CVE-2018-17792
MDaemon Webmail formerly WorldClient has CSRF...
Cross site request forgery (csrf)
MDaemon Webmail formerly WorldClient has CSRF...
CVE-2019-8984
MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...
CVE-2019-8983
MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 1 of 2...
CVE-2019-8983
MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 1 of 2...
CVE-2019-8984
MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...
CVE-2019-8984
MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...