640 matches found
Cross site scripting
Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...
CVE-2020-18724
Authenticated stored cross-site scripting XSS in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list...
CVE-2020-18724
CVE-2020-18724 affects MDaemon Webmail 19.5.5, where an authenticated user can trigger a stored XSS in the contact name field of a distribution list; payloads are executed when opening the contact list. Public exploit details exist (PacketStorm) and a vendor security update (ALTN) is referenced f...
CVE-2020-18723
Stored cross-site scripting XSS in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities...
CVE-2020-18723
MDaemon Webmail 19.5.5 is affected by a Stored XSS in the file attachment field. The vulnerability allows an attacker to execute code on the email recipient’s side when forwarding an email. No remediation or patch details are provided in the connected documents. Exploitation status is not specifi...
MDaemon Webmail 跨站脚本漏洞
MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5 that allows an attacker to execute code on the email recipient's end while forwarding an email...
MDaemon Webmail 跨站脚本漏洞
MDaemon Webmail is a server-side application for providing mail services from MDaemon, Inc. in the United States. A cross-site scripting vulnerability exists in MDaemon webmail 19.5.5, which allows attackers to execute code and XSS attacks while opening a contact list...
shadowbroker
This repository, Zam-0703/shadowbroker, contains a collection of exploits and tools for various vulnerabilities. The repository was created by the Shadow Brokers, a group known for releasing stolen NSA hacking tools. The repository includes exploits for several vulnerabilities, including:...
MDaemon Email Server Cross-Site Scripting Vulnerability
MDaemon Email Server is an email server. A cross-site scripting vulnerability exists in MDaemon Email Server version 17.5.1. The vulnerability stems from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to execute client-side code...
CVE-2019-19497
MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message...
CVE-2019-19497
MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message...
Cross site scripting
MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message...
CVE-2019-19497
MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message...
CVE-2019-19497
CVE-2019-19497 affects MDaemon Email Server 17.5.1 and is a Cross‑Site Scripting (XSS) vulnerability triggered by the filename of an email attachment. Public docs identify the root cause as a lack of proper validation of client‑side data by the web application, enabling injection of script throug...
Alt-N MDaemon Mail Server Detection (HTTP)
HTTP based detection of Alt-N MDaemon Mail Server. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
shadowbroker
This repository, "Cross6/shadowbroker", contains a collection of exploits and tools leaked by the Shadow Brokers, a group known for releasing sensitive information. The repository includes a README file that lists the contents of the repository, which includes various exploit modules and tools...
MDaemon Webmail Cross-Site Request Forgery Vulnerability
MDaemon Technologies MDaemon Webmail formerly known as WorldClient is a Web-based e-mail client for MDaemon Email Server from MDaemon Technologies. A cross-site request forgery vulnerability exists in MDaemon Webmail. The vulnerability stems from a WEB application that does not adequately validat...
CVE-2018-17792
MDaemon Webmail formerly WorldClient has CSRF...
CVE-2018-17792
MDaemon Webmail formerly WorldClient has CSRF...
Cross site request forgery (csrf)
MDaemon Webmail formerly WorldClient has CSRF...