Icewarp Client
Approved changes feed: RSS · Atom
cpe:2.3:a:icewarp:icewarp_client:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Icewarp (c8030f23-957a-58b4-8b02-23bd6cb49d34) |
|---|---|
| Product | Icewarp Client (7c60579c-0a6f-5f3b-aebd-01e73f5b0fbe) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-25269 |
vulnerable | 2026-06-03 14:38:41.315644 |
ICEWARP 11.0.0.0 Cross-Site Scripting via Email HTML Injection
MEDIUM (6.1)
ICEWARP 10.3.4 and 11.0.0.0 contains a cross-site scripting vulnerability that allows attackers to inject malicious HTML elements into emails by embedding base64-encoded payloads in object and embed tags. Attackers can craft emails containing data URIs with embedded scripts that execute in the client when the email is viewed, compromising user sessions and stealing sensitive information.
Published: 2026-04-22T14:57:03.267Z
Updated: 2026-05-25T23:41:00.739Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.