4 matches found
CVE-2023-39700
IceWarp Mail Server v10.4.5 was discovered to contain a reflected cross-site scripting XSS vulnerability via the color parameter...
CVE-2023-39700
IceWarp Mail Server v10.4.5 was discovered to contain a reflected cross-site scripting XSS vulnerability via the color parameter...
CVE-2023-39700
IceWarp Mail Server v10.4.5 was discovered to contain a reflected cross-site scripting XSS vulnerability via the color parameter...
CVE-2023-39700
IceWarp Mail Server v10.4.5 is affected by a reflected XSS via the color parameter in the webmail interface. The nuclei template describes unauthenticated attackers injecting malicious JavaScript to steal email session cookies and access sensitive communications. Remediation: upgrade to a version...