CVE-2017-7855
IceWarp WebMail 11.3.1.5 is affected by a Cross-Site Scripting (XSS) vulnerability in the language parameter of the webmail component. The Nuclei template confirms the affected product/version and states that an attacker can execute arbitrary JavaScript in a victim’s browser, potentially stealing...