0Xbunniee

**Name of the Vulnerable Software and Affected Versions** mailcow versions 2023-12a and prior **Description** The application is vulnerable to a pixel flood attack. Once the payload has been successfully uploaded in the logo, the application becomes slow and unresponsive in the admin page. **Recommendations** For versions 2023-12a and prior, update to version 2024-01 to resolve the issue. As a temporary workaround, consider restricting the upload of logos to minimize the risk of exploitation.