2 matches found
CVE-2017-12844
IceWarp Mail Server 10.4.4 is affected by a Cross-site scripting (XSS) vulnerability in the admin panel. The flaw allows remote authenticated domain administrators to inject arbitrary web script or HTML via a specially crafted username. Documented impact is limited to injection into admin UI; no ...
CVE-2017-12844
Cross-site scripting XSS vulnerability in the admin panel in IceWarp Mail Server 10.4.4 allows remote authenticated domain administrators to inject arbitrary web script or HTML via a crafted user name...