mailcow Summary
Latest vulnerabilities published by mailcow
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Server-Side Template Injection Vulnerability in Mailcow by Mailcow
CVE-2025-53909MailcowMailcow-dockerized9.1CRITICALSecurity Flaw in Mailcow's Password Reset Feature Affects Users
CVE-2025-25198MailcowMailcow-dockerizedπΎπ‘7.1HIGHSession Fixation Issue in Mailcow Web Panel
CVE-2024-56529MailcowMailcow Web Panel7.1HIGHJavaScript Payload Injection Vulnerability in Dockerized Groupware/Email Suite
CVE-2024-41960MailcowMailcow-dockerized4.8MEDIUMUnauthorized JavaScript injection in API logs could lead to malicious actions and data theft
CVE-2024-41959MailcowMailcow-dockerized6.1MEDIUMBypass of 2FA Protection in Mailcow's Dockerized Groupware/Email Suite
CVE-2024-41958MailcowMailcow-dockerizedπΎπ‘EPSS 30%7.2HIGHMailcow Vulnerability Affects Prior Versions, Patch Released
CVE-2024-30270MailcowMailcow-dockerizedπΎπ‘EPSS 49%π°6.2MEDIUMMailcow Vulnerability Affects Prior Versions, Pose Significant Security Risk
CVE-2024-31204MailcowMailcow-dockerizedπ°6.1MEDIUMMailcow Docker Container Exposure to Local Network
CVE-2024-24760MailcowMailcow-dockerizedπΎπ‘8.8HIGHmailcow ipixel flood attack leads to Denial of Service in admin page
CVE-2024-23824MailcowMailcow-dockerized4.7MEDIUMmailcow-dockerized XSS Vulnerability in Quarantine UI Allows Unauthorized Access and Data Manipulation
CVE-2023-49077mailcowmailcow-dockerized6.1MEDIUMManipulation of Internal Dovecot Variables in mailcow via crafted Passwords
CVE-2023-34108mailcowmailcow-dockerized8.8HIGHmailcow is vulnerable to shell command injection via xoauth2 authentication in imapsyncβ
CVE-2023-26490MailcowMailcow-dockerized7.3HIGHmailcow-dockerized critical information misrepresentation can lead to phishing attacks through Swagger UI
CVE-2022-39258MailcowMailcow-dockerized8.1HIGHOS Command Injection in mailcow
CVE-2022-31138MailcowMailcow-dockerizedπΎπ‘8.8HIGHOS Command Injection Vulnerability in Mailcow by Mailcow
CVE-2022-31245MailcowMailcow\πΎπ‘EPSS 22%8.8HIGHCSRF Vulnerability in Mailcow: Dockerized by Mailcow
CVE-2017-8928MailcowMailcow\8.8HIGH