CVE-2019-0218
N/A
N/A
Summary
A vulnerability was discovered wherein a specially crafted URL could enable reflected XSS via JavaScript in the pony mail interface.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The Apache Software Foundation | Apache Pony Mail (incubating) | 0.8 to 0.10 | affected |
Weaknesses
- Reflected XSS
ADP Enrichment
CVE Program Container
Additional References
- https://lists.apache.org/thread.html/18a7ff26bc31a77e32e5e02e65dc86b1c41b610c753f8927d2cf955a%40%3Cdev.ponymail.apache.org%3E
- https://www.openwall.com/lists/oss-security/2019/04/20/1
- http://www.securityfocus.com/bid/108046
References
- https://lists.apache.org/thread.html/18a7ff26bc31a77e32e5e02e65dc86b1c41b610c753f8927d2cf955a%40%3Cdev.ponymail.apache.org%3E
- https://www.openwall.com/lists/oss-security/2019/04/20/1
- http://www.securityfocus.com/bid/108046
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.