VYPR

NateMail

by MindPalette

CVEs (1)

  • CVE-2019-13392MedOct 16, 2019
    risk 0.40cvss 6.1epss 0.04

    A reflected Cross-Site Scripting (XSS) vulnerability in MindPalette NateMail 3.0.15 allows an attacker to execute remote JavaScript in a victim's browser via a specially crafted POST request. The application will reflect the recipient value if it is not in the NateMail recipient…