| Release | Version |
|---|---|
| buster | 1.12.1-2+deb10u1 |
| Bug | buster | Description |
|---|---|---|
| TEMP-0962629-FA7B70 | vulnerable (no DSA) | Rainloop stores passwords in cleartext in logfile |
| Bug | Description |
|---|---|
| CVE-2022-29360 | The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted em ... |
| CVE-2019-13389 | RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as ... |
| DSA / DLA | Description |
|---|---|
| DLA-3435-1 | rainloop - security update |