Vulnerabilities

CVE-2019-13389

by Fred · 20/03/2020

RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header.

Date published : 2020-03-20

https://github.com/RainLoop/rainloop-webmail/commit/8eb4588917b4741889fdd905d4c32e3e86317693

Similar

Tags: Cybersecurity Alert