CISA has recently expanded its Known Exploited Vulnerabilities (KEV) Catalog to include a significant security flaw affecting the MDaemon Email Server, tracked as CVE-2024-11182. This vulnerability, categorized under CWE-79 (Improper Neutralization of Input During Web Page Generation, commonly known as Cross-Site Scripting or XSS), allows remote attackers to execute arbitrary JavaScript code in the context […]
The post CISA Adds MDaemon Email Server XSS Vulnerability to KEV Catalog Following Exploitation appeared first on Cyber Security News.
This article has been indexed from Cyber Security News