FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
3e917407-4b3f-11ef-8e49-001999f8d30b	Mailpit -- Content Security Policy XSS Mailpit developer reports: A vulnerability was discovered which allowed a bad actor with SMTP access to Mailpit to bypass the Content Security Policy headers using a series of crafted HTML messages which could result in a stored XSS attack via the web UI. Discovery 2024-07-26 Entry 2024-07-26 mailpit < 1.19.3 https://github.com/axllent/mailpit/releases/tag/v1.19.3

VuXML ID

Description

3e917407-4b3f-11ef-8e49-001999f8d30b

Mailpit -- Content Security Policy XSS

Mailpit developer reports:

A vulnerability was discovered which allowed a bad actor with SMTP access to Mailpit to bypass the Content Security Policy headers using a series of crafted HTML messages which could result in a stored XSS attack via the web UI.

Discovery 2024-07-26
Entry 2024-07-26
mailpit

< 1.19.3

https://github.com/axllent/mailpit/releases/tag/v1.19.3