CVE-2019-9763

An issue was discovered in Openfind Mail2000 6.0 and 7.0 Webmail. XSS can occur via an '<object data="data:text/html' substring in an e-mail message (The vendor subsequently patched this).
Configurations

Configuration 1 (hide)

cpe:2.3:a:openfind:mail2000:6.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-06-19 18:15

Updated : 2024-02-04 20:20


NVD link : CVE-2019-9763

Mitre link : CVE-2019-9763

CVE.ORG link : CVE-2019-9763


JSON object : View

Products Affected

openfind

  • mail2000
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')