2 matches found
CVE-2020-35740 HGiga MailSherlock - XSS -1
HGiga MailSherlock does not validate specific URL parameters properly that allows attackers to inject JavaScript syntax for XSS attacks...
CVE-2020-35740
HGiga MailSherlock is affected by a Cross‑Site Scripting (XSS) vulnerability caused by inadequate validation of specific URL parameters. Exploitation would permit injection of JavaScript syntax, with the CVE entry listing a MEDIUM to HIGH risk depending on the source, and CVSS scores indicating n...