CVE-2018-15668
CVE-2018-15668 affects Bloop Airmail 3.5.9 for macOS. The airmail:// URL scheme’s send command can be invoked by external applications to auto-send emails from the user’s active account, with attachment_ parameters allowing any accessible file path (including relative paths) to be attached withou...