Webclient@10.3.5 Security Vulnerabilities and Issues — Webclient@10.3.5 CVE List

Lucene search

IcewarpWebclient10.3.5

2 matches found

CVE•added 2023/09/25 7:15 p.m.•40 views

CVE-2023-43319

Cross Site Scripting (XSS) vulnerability in the Sign-In page of IceWarp WebClient 10.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter.

6.1CVSS6AI score0.00256EPSS

CVE•added 2021/07/07 2:15 p.m.•30 views

CVE-2020-25925

Cross Site Scripting (XSS) in Webmail Calender in IceWarp WebClient 10.3.5 allows remote attackers to inject arbitrary web script or HTML via the "p4" field.

6.1CVSS6AI score0.00195EPSS