EUVD-2019-4883

Malware in sbrugna...

EUVD-2022-33701

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-29360

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message. CVE-2022-29360 Note that Nessus relies on the presence of the package as...

Linux Distros Unpatched Vulnerability : CVE-2019-13389

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS- Protection header, and the Content-Security-Policy...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

CVE-2019-13389

RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header...

Debian: Security Advisory (DLA-3435-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-3435-1 rainloop - security update

Bulletin has no description...

[SECURITY] [DLA 3435-1] rainloop security update

Debian LTS Advisory DLA-3435-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin May 28, 2023 https://wiki.debian.org/LTS Package : rainloop Version : 1.12.1-2+deb10u1 CVE ID : CVE-2019-13389 CVE-2022-29360 Debian Bug : 1004548 Cross-site scripting XSS vulnerabilitie...

Debian dla-3435 : rainloop - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3435 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3435-1 [email protected]...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

UBUNTU-CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

Cross site scripting

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

CVE-2022-29360

The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message...

RainLoop Webmail 跨站脚本漏洞

RainLoop Webmail is a web-based email client software. A cross-site scripting vulnerability exists in RainLoop Webmail 1.6.0 and earlier versions, which stems from a failure to properly clean up when processing HTML content, and can be exploited by an attacker to take control of a victim's sessio...

CVE-2022-29360

The CVE-2022-29360 issue affects RainLoop’s Email Viewer (RainLoop) when processing HTML content in emails, enabling cross‑site scripting via a crafted text/html email message in versions up to 1.6.0. Technical sources reference this XSS in RainLoop’s Email Viewer and note remediation in Debian: ...

CVE-2022-29360

Removed by vendor...