← back
CVE-2021-27182

CVE-2021-27182

EPSS 1.6%
An issue was discovered in MDaemon before 20.0.4. There is an IFRAME injection vulnerability in Webmail (aka WorldClient). It can be exploited via an email message. It allows an attacker to perform any action with the privileges of the attacked user.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/chudyPB/MDaemon-Advisorieshttps://www.altn.com/Support/SecurityUpdate/MD011221_MDaemon_EN/