Altn: Security Vulnerabilities
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the currentRequest parameter.
CVSS Score
5.4
EPSS Score
0.006
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the Blacklist endpoint.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the rulles_list_ajax endpoint.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter.
CVSS Score
9.8
EPSS Score
0.011
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the data_leak_list_ajax endpoint.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter.
CVSS Score
9.8
EPSS Score
0.009
Published
2022-08-25
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the whitelist endpoint.
CVSS Score
5.4
EPSS Score
0.005
Published
2022-08-25
An Authenticated Reflected Cross-site scripting at CC Parameter was discovered in MDaemon before 22.0.0 .
CVSS Score
5.4
EPSS Score
0.003
Published
2022-05-11
An Authenticated Reflected Cross-site scripting at BCC Parameter was discovered in MDaemon before 22.0.0 .
CVSS Score
5.4
EPSS Score
0.003
Published
2022-05-11
Page 1