Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| dada_mail | dada_mail | 2.8.16_alpha1 |
| dada_mail | dada_mail | 2.8.15_beta1 |
| dada_mail | dada_mail | 2.8.16_alpha4 |
| dada_mail | dada_mail | 2.8.15 |
| dada_mail | dada_mail | 2.9.2 |
| dada_mail | dada_mail | 2.8.13_alpha2 |
| dada_mail | dada_mail | 2.9.0_rc1 |
| dada_mail | dada_mail | 2.8.16_alpha2 |
| dada_mail | dada_mail | 2.8.14_rc2 |
| dada_mail | dada_mail | 2.8.15_rc1 |
| dada_mail | dada_mail | 2.9.1 |
| dada_mail | dada_mail | 2.9.0_beta2 |
| dada_mail | dada_mail | 2.8.13 |
| dada_mail | dada_mail | 2.8.15_alpha1 |
| dada_mail | dada_mail | 2.8.12_beta |
| dada_mail | dada_mail | 2.9.0_beta1 |
| dada_mail | dada_mail | 2.8.16_alpha3 |
| dada_mail | dada_mail | 2.8.10 |
| dada_mail | dada_mail | 2.8.14_beta1 |
| dada_mail | dada_mail | 2.8.14_rc1 |
| dada_mail | dada_mail | 2.8.12 |
| dada_mail | dada_mail | 2.9.0 |
| dada_mail | dada_mail | 2.8.11 |
| dada_mail | dada_mail | 2.8.13_alpha1 |
| dada_mail | dada_mail | 2.8.14_alpha1 |