Lucene search
K

640 matches found

ATTACKERKB
ATTACKERKB
added 2022/08/25 3:15 p.m.3 views

CVE-2022-37241

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the dataleaklistajax endpoint...

5.4CVSS6.1AI score0.00518EPSS
Exploits1References3
OSV
OSV
added 2022/08/25 3:15 p.m.5 views

CVE-2022-37243

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the whitelist endpoint...

5.4CVSS5.8AI score0.00518EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/25 3:15 p.m.3 views

CVE-2022-37243

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the whitelist endpoint...

5.4CVSS6.1AI score0.00518EPSS
Exploits1References3
NVD
NVD
added 2022/08/25 3:15 p.m.18 views

CVE-2022-37243

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the whitelist endpoint...

5.4CVSS0.00518EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/08/25 3:15 p.m.2 views

CVE-2022-37242

MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter...

9.8CVSS7.4AI score0.01202EPSS
Exploits1References3
OSV
OSV
added 2022/08/25 3:15 p.m.5 views

CVE-2022-37240

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter...

9.8CVSS7.3AI score0.01202EPSS
Exploits1References2
OSV
OSV
added 2022/08/25 3:15 p.m.6 views

CVE-2022-37239

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the rulleslistajax endpoint...

5.4CVSS5.8AI score0.00518EPSS
Exploits1References2
NVD
NVD
added 2022/08/25 3:15 p.m.11 views

CVE-2022-37242

MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter...

9.8CVSS0.01202EPSS
Exploits1References2
NVD
NVD
added 2022/08/25 3:15 p.m.22 views

CVE-2022-37240

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter...

9.8CVSS0.01202EPSS
Exploits1References2
OSV
OSV
added 2022/08/25 3:15 p.m.4 views

CVE-2022-37242

MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter...

9.8CVSS5.8AI score0.01202EPSS
Exploits1References2
Prion
Prion
added 2022/08/25 3:15 p.m.14 views

Cross site scripting

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the rulleslistajax endpoint...

4.9CVSS5.3AI score0.00518EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/08/25 3:15 p.m.14 views

Cross site scripting

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the Blacklist endpoint...

4.9CVSS5.3AI score0.00518EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/08/25 3:15 p.m.23 views

Design/Logic Flaw

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection...

4.9CVSS5.9AI score0.00464EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/08/25 3:15 p.m.15 views

Cross site scripting

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the dataleaklistajax endpoint...

4.9CVSS5.3AI score0.00518EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/08/25 3:15 p.m.12 views

Design/Logic Flaw

MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter...

7.5CVSS9.3AI score0.01202EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/08/25 3:15 p.m.16 views

Design/Logic Flaw

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter...

7.5CVSS9.3AI score0.01202EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/08/25 3:1 p.m.63 views

CVE-2022-37238

CVE-2022-37238 affects MDaemon Technologies SecurityGateway for Email Servers 8.5.2. The vulnerability is a Cross Site Scripting (XSS) flaw triggered via the currentRequest parameter . Root cause described in the sources is a reflected XSS condition in the parameter handling, with a CVSSv3.1 base...

5.4CVSS5.3AI score0.00464EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/08/25 3:1 p.m.25 views

CVE-2022-37238

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the currentRequest parameter...

5.5AI score0.00464EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/08/25 2:59 p.m.19 views

CVE-2022-37239

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting XSS via the rulleslistajax endpoint...

5.5AI score0.00518EPSS
Exploits1References2
CVE
CVE
added 2022/08/25 2:59 p.m.53 views

CVE-2022-37239

CVE-2022-37239 affects MDaemon Technologies SecurityGateway for Email Servers version 8.5.2. The vulnerability is a Cross Site Scripting (XSS) issue exposed via the rulles_list_ajax endpoint. Public details in connected documents consistently describe XSS via that API path and reference the 8.5.2...

5.4CVSS5.3AI score0.00518EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder