Vulnerabilities > Altn > Security Gateway FOR Email Servers > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-37238 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the currentRequest parameter.
network
low complexity
altn CWE-79
5.4
5.4
2022-08-25 CVE-2022-37239 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the rulles_list_ajax endpoint.
network
low complexity
altn CWE-79
5.4
5.4
2022-08-25 CVE-2022-37241 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the data_leak_list_ajax endpoint.
network
low complexity
altn CWE-79
5.4
5.4
2022-08-25 CVE-2022-37243 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the whitelist endpoint.
network
low complexity
altn CWE-79
5.4
5.4
2022-08-25 CVE-2022-37244 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter.
network
low complexity
altn CWE-79
5.4
5.4
2022-08-25 CVE-2022-37245 Cross-site Scripting vulnerability in Altn Security Gateway for Email Servers 8.5.2
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the Blacklist endpoint.
network
low complexity
altn CWE-79
5.4
5.4