CVE-2020-18723 — CVSS 5.4 (medium): Stored cross-site scripting (XSS) in file attachment field in MDaemon webmail 19.5.5 allows an attacker to execute code on the email…
CVE-2020-18724 — CVSS 5.4 (medium): Authenticated stored cross-site scripting (XSS) in the contact name field in the distribution list of MDaemon webmail 19.5.5 allows an…