Analyzed
1 day
ago.
based on code collected
3 days
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2021-33054 | BDSA-2021-1699 | High | Jun 04, 2021 | SOGo 2.x before 2.4.1 and 3.x through 5.x before 5.1.1 does not validate the signatures of any SAML assertions it receives. Any actor with network acce more... |
2.3.16, 2.3.14, 2.3.9, 2.3.8, 2.3.7, 3.1.2, 2.3.11, 3.1.0, 2.3.12, 2.2.0
|
| BDSA-2025-8108 | High | Aug 05, 2025 | SOGo Webmail is vulnerable to insecure direct object reference (IDOR) due to improper authorization checks in the email-sending functionality. This cou more... | ||
| BDSA-2025-33566 | High | Nov 25, 2025 | Alinto SOGo is vulnerable to cross-site scripting (XSS) due to improper handling of the `userName` parameter in POST requests when the `Remember Userna more... |
