Lucene search
+L

34 matches found

osv
osv
added 2021/02/03 6:15 p.m.4 views

CVE-2020-18723

Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...

5.4CVSS6.2AI score0.03799EPSS
Exploits2References3
prion
prion
added 2021/02/03 6:15 p.m.17 views

Cross site scripting

Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...

3.5CVSS5.1AI score0.03191EPSS
Exploits2References3Affected Software1
cvelist
cvelist
added 2021/02/03 5:27 p.m.20 views

CVE-2020-18724

Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...

5.2AI score0.03191EPSS
Exploits2References3
cve
cve
added 2021/02/03 5:25 p.m.69 views

CVE-2020-18723

MDaemon Webmail 19.5.5 is affected by a Stored XSS in the file attachment field. The vulnerability allows an attacker to execute code on the email recipient’s side when forwarding an email. No remediation or patch details are provided in the connected documents. Exploitation status is not specifi...

5.4CVSS5.2AI score0.03799EPSS
Exploits2References3Affected Software1
cnnvd
cnnvd
added 2021/02/03 12:0 a.m.7 views

MDaemon Webmail 跨站脚本漏洞

MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5 that allows an attacker to execute code on the email recipient's end while forwarding an email...

5.4CVSS6.1AI score0.03799EPSS
Exploits2References6
cnnvd
cnnvd
added 2021/02/03 12:0 a.m.7 views

MDaemon Webmail 跨站脚本漏洞

MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5, which allows attackers to execute code and XSS attacks while opening a contact list...

5.4CVSS6.1AI score0.03191EPSS
Exploits2References6
cnvd
cnvd
added 2019/07/23 12:0 a.m.7 views

MDaemon Webmail Cross-Site Request Forgery Vulnerability

MDaemon Technologies MDaemon Webmail formerly known as WorldClient is a Web-based e-mail client for MDaemon Email Server from MDaemon Technologies. A cross-site request forgery vulnerability exists in MDaemon Webmail. The vulnerability stems from a WEB application that does not adequately validat...

8.8CVSS6.8AI score0.01039EPSS
Exploits0References1
osv
osv
added 2019/07/19 5:15 p.m.7 views

CVE-2018-17792

MDaemon Webmail formerly WorldClient has CSRF...

8.8CVSS5.8AI score0.01039EPSS
Exploits0References3
prion
prion
added 2019/07/19 5:15 p.m.17 views

Cross site request forgery (csrf)

MDaemon Webmail formerly WorldClient has CSRF...

6.8CVSS8.7AI score0.01039EPSS
Exploits0References3Affected Software1
osv
osv
added 2019/02/21 3:29 p.m.4 views

CVE-2019-8984

MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...

6.1CVSS6.3AI score0.00793EPSS
Exploits0References1
osv
osv
added 2019/02/21 3:29 p.m.3 views

CVE-2019-8983

MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 1 of 2...

6.1CVSS5.8AI score0.00793EPSS
Exploits0References1
nvd
nvd
added 2019/02/21 3:29 p.m.16 views

CVE-2019-8983

MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 1 of 2...

6.1CVSS6.1AI score0.00793EPSS
Exploits0References1
nvd
nvd
added 2019/02/21 3:29 p.m.11 views

CVE-2019-8984

MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...

6.1CVSS6.1AI score0.00793EPSS
Exploits0References1
cvelist
cvelist
added 2019/02/21 3:0 p.m.25 views

CVE-2019-8984

MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS issue 2 of 2...

6.1AI score0.00793EPSS
Exploits0References1
Rows per page
Query Builder