Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Icewarp Subscribe
Filtered by product Icewarp
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-55218 1 Icewarp 1 Icewarp 2025-10-02 N/A 6.1 MEDIUM
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter.
CVE-2023-41013 1 Icewarp 1 Icewarp 2024-11-21 N/A 6.1 MEDIUM
Cross Site Scripting (XSS) in Webmail Calendar in IceWarp 10.3.1 allows remote attackers to inject arbitrary web script or HTML via the "p4" field.
CVE-2023-39600 1 Icewarp 1 Icewarp 2024-11-21 N/A 6.1 MEDIUM
IceWarp 11.4.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the color parameter.
CVE-2023-37728 1 Icewarp 1 Icewarp 2024-11-21 N/A 6.1 MEDIUM
IceWarp v10.2.1 was discovered to contain cross-site scripting (XSS) vulnerability via the color parameter.