2 matches found
CVE-2024-0246
A vulnerability classified as problematic has been found in IceWarp 12.0.2.1/12.0.3.1. This affects an unknown part of the file /install/ of the component Utility Download Handler. The manipulation of the argument lang with the input 1%27"%26%25 leads to cross site scripting. It is possible to...
CVE-2024-0246
IceWarp 12.0.2.1/12.0.3.1 has a cross-site scripting vulnerability in the Utility Download Handler’s /install/ path, triggered by manipulating the lang parameter. The issue, described across multiple feeds, can be exploited remotely and uses input like 1%27"()%26%25. Public disclosure is noted; v...