Coremail Xt Project - Coremail Xt CVE - CVE Search - CVE Details

Filtered by vendor Coremail Xt Project Subscribe

Filtered by product Coremail Xt

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-29133	1 Coremail Xt Project	1 Coremail Xt	2020-11-30	4.3 MEDIUM	6.1 MEDIUM
jsp/upload.jsp in Coremail XT 5.0 allows XSS via an uploaded personal signature, as demonstrated by a .jpg.html filename in the signImgFile parameter.

Vulnerabilities (CVE)