THREATOPS
THREAT OPSCVEs › CVE-2024-11182

CVE-2024-11182 — MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability

CISA KEVExploited: confirmedMDaemon

MDaemon Email Server contains a cross-site scripting (XSS) vulnerability that allows a remote attacker to load arbitrary JavaScript code via an HTML e-mail message.

Vulnerability details