CVE-2024-11182: MDaemon Email Server Cross-Site Scripting (XSS)

MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability. MDaemon Email Server contains a cross-site scripting (XSS) vulnerability that allows a remote attacker to load arbitrary JavaScript code via an HTML e-mail message.

• CISA KEV-listed (remediation due 2025-06-09)
• EPSS 13.5% (94.4% percentile)

Browse the CVE database

Read the full analysis on IntelFusions