Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-38377

Disclosure Date: November 22, 2021 (last updated February 23, 2025)
OX App Suite through 7.10.5 allows XSS via JavaScript code in an anchor HTML comment within truncated e-mail, because there is a predictable UUID with HTML transformation results.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0