CVE List

CVE-2019-13389

Moderate 6.1

RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header.

Published March 20, 2020.

Affected software

Rainloop Webmail

Reference links

Sign Up for Alerts