Show filters
8 Total Results
Displaying 1-8 of 8
Sort by:
Attacker Value
Unknown
CVE-2022-37238
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the currentRequest parameter.
0
Attacker Value
Unknown
CVE-2022-37245
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the Blacklist endpoint.
0
Attacker Value
Unknown
CVE-2022-37244
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection.
0
Attacker Value
Unknown
CVE-2022-37243
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the whitelist endpoint.
0
Attacker Value
Unknown
CVE-2022-37242
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2, is vulnerable to HTTP Response splitting via the data parameter.
0
Attacker Value
Unknown
CVE-2022-37241
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the data_leak_list_ajax endpoint.
0
Attacker Value
Unknown
CVE-2022-37240
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to HTTP Response splitting via the format parameter.
0
Attacker Value
Unknown
CVE-2022-37239
Disclosure Date: August 25, 2022 (last updated October 08, 2023)
MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to Cross Site Scripting (XSS) via the rulles_list_ajax endpoint.
0
