Vulnerabilities > Iredmail

DATE	CVE	VULNERABILITY TITLE	RISK
2024-09-23	CVE-2024-47227	Cross-site Scripting vulnerability in Iredmail Iredadmin iRedAdmin before 2.6 allows XSS, e.g., via order_name. network low complexity iredmail CWE-79	6.1
2018-03-13	CVE-2018-1000072	Incorrect Permission Assignment for Critical Resource vulnerability in Iredmail iRedMail version prior to commit f04b8ef contains a Insecure Permissions vulnerability in Roundcube Webmail that can result in Exfiltrate a user's password protected secret GPG key file and other important configuration files.. network low complexity iredmail CWE-732	7.5

Vulnerabilities > Iredmail {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Iredmail"}]}