Medium severity6.1NVD Advisory· Published Mar 20, 2020· Updated Jun 17, 2026
CVE-2019-13389
CVE-2019-13389
Description
RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- RainLoop Webmail/RainLoop Webmaildescription
- Range: <1.13.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.