Rumble Mail Server Project: Security Vulnerabilities
A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the (1) domain and (2) path parameters.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-04-04
Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the servername parameter.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-04-04
A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the username parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2022-04-04
An Unquoted Service Path vulnerablility exists in Rumble Mail Server 0.51.3135 via via a specially crafted file in the RumbleService executable service path.
CVSS Score
7.8
EPSS Score
0.002
Published
2022-04-04