CVE-2023-48115
SmarterMail 8495–8664 before 8747 is vulnerable to stored DOM XSS caused by an XSS protection mechanism being skipped when messageHTML and messagePlainText are set in the same request. Exploitation details are not provided in the documents, but the approved remediation is to upgrade to 8747 or la...