Vulnerabilities > KDE > Kmail > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-12-23 | CVE-2016-7968 | Code Injection vulnerability in KDE Kmail 4.4.0/5.2.3/5.3.0 KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. | 7.5 |
| 2016-12-23 | CVE-2016-7966 | Code Injection vulnerability in multiple products Through a malicious URL that contained a quote character it was possible to inject HTML code in KMail's plaintext viewer. | 7.3 |