Filtered by vendor Codecrafters
Subscriptions
Filtered by product Ability Mail Server
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2017-17752 | 1 Codecrafters | 1 Ability Mail Server | 2024-08-05 | N/A |
| Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the Read Mail screen (aka the /_readmail URI). This is fixed in version 4.2.4. | ||||
| CVE-2019-9557 | 1 Codecrafters | 1 Ability Mail Server | 2024-08-04 | N/A |
| Ability Mail Server 4.2.6 has Persistent Cross Site Scripting (XSS) via the body e-mail body. To exploit the vulnerability, the victim must open an email with malicious Javascript inserted into the body of the email as an iframe. | ||||
Page 1 of 1.