Codecrafters Ability Mail Server — known CVE vulnerabilities
Every CVE whose affected-product data names Codecrafters Ability Mail Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2017-17752 — CVSS 6.1 (medium): Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the Read Mail…
CVE-2019-9557 — CVSS 6.1 (medium): Ability Mail Server 4.2.6 has Persistent Cross Site Scripting (XSS) via the body e-mail body. To exploit the vulnerability, the victim must…