Wedevs Wemail
4 CVEs affecting Wedevs Wemail. Latest disclosed: 2026-06-26. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-57322 | High | 7.1 | 2026-06-26 | Unauthenticated Cross Site Scripting (XSS) in weMail <= 2.1.2 versions. |
CVE-2024-43238 | High | 7.1 | 2024-08-18 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in weDevs weMail wemail allows DOM-Based XSS.This issue affe… |
CVE-2025-47540 | Medium | 5.3 | 2025-05-07 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs weMail wemail allows Retrieve Embedded Sensitive Data.This i… |
CVE-2024-34822 | Medium | 5.3 | 2024-06-11 | Missing Authorization vulnerability in weDevs weMail.This issue affects weMail: from n/a through 1.14.2. |