Vendor
RainLoop
Products
2
CVEs
2
Across products
2
Status
Private
Products
2- 1 CVE
- 1 CVE
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-29360 | Med | 0.35 | 5.4 | 0.01 | Jul 28, 2022 | The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message. | ||
| CVE-2019-13389 | Med | 0.00 | 6.1 | 0.01 | Mar 20, 2020 | RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header. |
- risk 0.35cvss 5.4epss 0.01
The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted email message.
- risk 0.00cvss 6.1epss 0.01
RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header.