0.001 Low
EPSS
Percentile
30.4%
sogo is vulnerable to Cross-site Scripting (XSS). The vulnerability exists in the NSString+Utilities.m of Mail Handler, allowing an attacker to inject and execute malicious javascript
NSString+Utilities.m
Mail Handler
github.com/Alinto/sogo/commit/1e0f5f00890f751e84d67be4f139dd7f00faa5f3
github.com/Alinto/sogo/releases/tag/SOGo-5.8.0
security-tracker.debian.org/tracker/CVE-2022-4558
vuldb.com/?id.215961