CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Coremail Xt Project: >> Coremail Xt >> 5.0 Security Vulnerabilities

CVE-2020-29133

jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded personal signature, as demonstrated by a .jpg.html filename in the signImgFile parameter.

CVSS Score

6.1

EPSS Score

0.008

Published

2020-11-27

Page 1

Vulnerabilities

Vulnerable Software

Coremail Xt Project: >> Coremail Xt >> 5.0 Security Vulnerabilities

Products

Pricing

Contact Us