Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the Read Mail screen (aka the /_readmail URI). This is fixed in version 4.2.4.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codecrafters ability mail server 3.3.2 |