CVE-2024-45800 – Multiple mXSS found in snappymail HTML parser

https://notcve.org/view.php?id=CVE-2024-45800

Snappymail is an open source web-based email client. SnappyMail uses the `cleanHtml()` function to cleanup HTML and CSS in emails. Research discovered that the function has a few bugs which cause an mXSS exploit. Because the function allowed too many (invalid) HTML elements, it was possible (with incorrect markup) to trick the browser to "fix" the broken markup into valid markup. As a result a motivated attacker may be able to inject javascript. • https://github.com/the-djmaze/snappymail/blob/master/dev/Common/Html.js https://github.com/the-djmaze/snappymail/commit/cfbc47488a6b2e2ae4be484f501ee1a3485f542e https://github.com/the-djmaze/snappymail/security/advisories/GHSA-2rq7-79vp-ffxm • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •