CVE-2024-6740 | Openfind Mail2000 7.0/8.0 Attachment cross site scripting (Patch 131)

Inserito da Angelo Barbosa | Lug 15, 2024 | CVE

A vulnerability was found in Openfind Mail2000 7.0/8.0. It has been classified as problematic. This affects an unknown part of the component Attachment Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-6740. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-6740 | Openfind Mail2000 7.0/8.0 Attachment cross site scripting (Patch 131)

Post correlati

CVE-2023-45139 | fonttools prior 4.43.0 xml external entity reference (GHSA-6673-4983)

CVE-2024-42269 | Linux Kernel up to 6.1.103/6.6.44/6.10.3 iptables ip6table_nat_table_init null pointer dereference

CVE-2024-20396 | Cisco Webex Teams up to 43.4.0.25788 File Protocol information disclosure (cisco-sa-webex-app-ZjNm8X8j)

CVE-2024-1824 | CodeAstro House Rental Management System 1.0 signing.php uname/password sql injection