AI Score
Confidence
High
EPSS
Percentile
59.1%
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or HTML via the mailboxid parameter to secmail/getmessage.exe.
seclists.org/fulldisclosure/2018/Mar/29
www.exploit-db.com/exploits/44285/
www.sec-consult.com/en/blog/advisories/multiple-critical-vulnerabilities-in-securenvoy-securmail/index.html