Coremail: >> Coremail Xt >> 3.0 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in intervalCheck.jsp in Coremail XT 3.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2018-08-10
register.jsp in Coremail XT3.0 allows stored XSS, as demonstrated by the third form field to a URI under register/, a different vulnerability than CVE-2015-6942.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-04-07
Cross-site scripting (XSS) vulnerability in Coremail XT3.0 allows remote attackers to inject arbitrary web script or HTML via a hyperlink in a document attachment.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-08-29