CVE-2020-18724

Published: 2021-02-03T18:15Z

Last Modified: 2024-11-21T05:08Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an attacker to executes code and perform a XSS attack while opening a contact list. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt