CVE-2020-27982
MEDIUM EXPLOITED NUCLEIIcewarp Mail Server - XSS
Title source: ruleDescription
IceWarp 11.4.5.0 allows XSS via the language parameter.
Nuclei Templates (1)
IceWarp WebMail 11.4.5.0 - Cross-Site Scripting
MEDIUMby madrobot
Shodan:
title:"icewarp" || http.title:"icewarp server administration" || http.title:"icewarp" || cpe:"cpe:2.3:a:icewarp:mail_server"
FOFA:
title="icewarp server administration" || title="icewarp"
Scores
CVSS v3
6.1
EPSS
0.0787
EPSS Percentile
92.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
VulnCheck KEV
2024-09-19
CWE
CWE-79
Status
published
Products (1)
icewarp/mail_server
11.4.5
Published
Nov 02, 2020
Tracked Since
Feb 18, 2026