KMail JavaScript Execution Vulnerability

KMail JavaScript Execution Vulnerability

CVE-2016-7968 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

KMail since version 5.3.0 used a QWebEngine based viewer that had JavaScript enabled. HTML Mail contents were not sanitized for JavaScript and included code was executed.

Learn more about our Web App Pen Testing.