Vulnerabilities > Altn > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-03 | CVE-2020-18724 | Cross-site Scripting vulnerability in Altn Mdaemon Webmail 14.0/20.0.0 Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list. | 5.4 |
| 2021-02-03 | CVE-2020-18723 | Cross-site Scripting vulnerability in Altn Mdaemon Webmail 14.0/20.0.0 Stored cross-site scripting (XSS) in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email recipient side while forwarding an email to perform potentially malicious activities. | 5.4 |
| 2019-12-17 | CVE-2019-19497 | Cross-site Scripting vulnerability in Altn Mdaemon Email Server 17.5.1 MDaemon Email Server 17.5.1 allows XSS via the filename of an attachment to an email message. | 5.4 |
| 2019-02-21 | CVE-2019-8984 | Cross-site Scripting vulnerability in Altn Mdaemon MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS (issue 2 of 2). | 6.1 |
| 2019-02-21 | CVE-2019-8983 | Cross-site Scripting vulnerability in Altn Mdaemon MDaemon Webmail 14.x through 18.x before 18.5.2 has XSS (issue 1 of 2). | 6.1 |