Vulnerabilities > Altn > Mdaemon Email Server
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-17 | CVE-2019-19497 | Cross-site Scripting vulnerability in Altn Mdaemon Email Server 17.5.1 MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message. | 3.5 |
| 2019-07-16 | CVE-2019-13612 | Improper Input Validation vulnerability in Altn Mdaemon Email Server 19 MDaemon Email Server 19 through 20.0.1 skips SpamAssassin checks by default for e-mail messages larger than 2 MB (and limits checks to 10 MB even with special configuration), which is arguably inconsistent with currently popular message sizes. | 5.0 |