{"id":"CVE-2020-22402","details":"Cross Site Scripting (XSS) vulnerability in SOGo Web Mail before 4.3.1 allows attackers to obtain user sensitive information when a user reads an email containing malicious code.","modified":"2026-03-14T10:18:19.286065Z","published":"2023-06-14T14:15:09.440Z","references":[{"type":"FIX","url":"https://sogo.nu/bugs/view.php?id=4979"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-22402.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"4.3.1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}