CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mailenable: >> Mailenable >> 9.14 Security Vulnerabilities

CVE-2019-12927

MailEnable Enterprise Premium 10.23 was vulnerable to stored and reflected cross-site scripting (XSS) attacks. Because the session cookie did not use the HttpOnly flag, it was possible to hijack the session cookie by exploiting this vulnerability.

CVSS Score

6.1

EPSS Score

0.001

Published

2019-07-08

Page 4

Vulnerabilities

Vulnerable Software

Mailenable: >> Mailenable >> 9.14 Security Vulnerabilities

Products

Pricing

Contact Us