CVSS: 6.4EPSS: 12%CPEs: 2EXPL: 0CVE-2021-36580
https://notcve.org/view.php?id=CVE-2021-36580
27 Jul 2023 — Open Redirect vulnerability exists in IceWarp MailServer IceWarp Server Deep Castle 2 Update 1 (13.0.1.2) via the referer parameter. • http://icewarp.com • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 6.1EPSS: 37%CPEs: 1EXPL: 4CVE-2020-8512 – IceWarp WebMail 11.4.4.1 - Reflective Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2020-8512
27 Jan 2020 — In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webmail/ color parameter. En IceWarp Webmail Server versiones hasta 11.4.4.1, se presenta una vulnerabilidad XSS en el parámetro color del archivo /webmail/. IceWarp WebMail versions 11.4.4.1 and below suffer from a cross site scripting vulnerability. • https://packetstorm.news/files/id/156103 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •