| Release | Version |
|---|---|
| buster | 1.12.1-2 |
| Bug | buster | Description |
|---|---|---|
| TEMP-0962629-FA7B70 | vulnerable (no DSA) | Rainloop stores passwords in cleartext in logfile |
| CVE-2022-29360 | vulnerable | The Email Viewer in RainLoop through 1.6.0 allows XSS via a crafted em ... |
| CVE-2019-13389 | vulnerable (no DSA) | RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as ... |