A vulnerability was discovered wherein a specially crafted URL could enable reflected XSS via JavaScript in the pony mail interface.
{ "cpe": "cpe:2.3:a:apache:pony_mail:*:*:*:*:*:*:*:*", "source": "CPE_RANGE", "extracted_events": [ { "introduced": "0.8" }, { "last_affected": "0.10" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0218.json"