exploitDog

GHSA-4c36-rwf6-qrpp

Опубликовано: 26 авг. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection.

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection.

Ссылки

EPSS

Процентиль: 67%

0.00548

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-37244

CVSS3: 5.4

nvd

больше 3 лет назад

MDaemon Technologies SecurityGateway for Email Servers 8.5.2 is vulnerable to IFRAME Injectionvia the currentRequest parameter. after login leads to inject malicious tag leads to IFRAME injection.

EPSS

Процентиль: 67%

0.00548

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79