4 matches found
CVE-2023-37728
IceWarp v10.2.1 was discovered to contain cross-site scripting XSS vulnerability via the color parameter...
CVE-2023-37728
creationtimestamp| type| source ---|---|--- 2023-11-15 04:04:08+00:00| seen| https://t.me/kasraonecom/597 2024-01-28 12:07:48+00:00| published-proof-of-concept| https://t.me/MrVGunz/991...
CVE-2023-37728
IceWarp Webmail Server v10.2.1 is affected by a Cross‑Site Scripting (XSS) vulnerability reachable via the color parameter. The Nuclei template and related references describe an XSS that could allow an unauthenticated attacker to inject JavaScript and potentially access user sessions (cookie lea...
CVE-2023-37728
IceWarp v10.2.1 was discovered to contain cross-site scripting XSS vulnerability via the color parameter...