Vulnerabilities (CVE)

Filtered by vendor Synology Subscribe
Filtered by product Mailplus Server
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-13296 1 Synology 1 Mailplus Server 2024-11-21 5.0 MEDIUM 7.5 HIGH
Uncontrolled resource consumption vulnerability in TLS configuration in Synology MailPlus Server before 2.0.5-0606 allows remote attackers to conduct denial-of-service attacks via client-initiated renegotiation.
CVE-2017-16768 1 Synology 1 Mailplus Server 2024-11-21 3.5 LOW 4.8 MEDIUM
Cross-site scripting (XSS) vulnerability in User Policy editor in Synology MailPlus Server before 1.4.0-0415 allows remote authenticated users to inject arbitrary HTML via the name parameter.
CVE-2017-15890 1 Synology 1 Mailplus Server 2024-11-21 3.5 LOW 4.8 MEDIUM
Cross-site scripting (XSS) vulnerability in Disclaimer in Synology MailPlus Server before 1.4.0-0415 allows remote authenticated users to inject arbitrary web script or HTML via the NAME parameter.