Lucene search
+L

5 matches found

cvelist
cvelist
added 2026/05/07 6:5 p.m.33 views

CVE-2026-41904 FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer's email client (no CSP), bypassing strip_tags validator with mixed text+HTML content

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply message. The payload is rendered unescaped in the auto-reply email sent to every customer who...

7.6CVSS0.00171EPSS
Exploits0References2
cve
cve
added 2026/05/07 6:5 p.m.23 views

CVE-2026-41904

FreeScout (PHP/Laravel) prior to version 1.8.217 is affected by a Stored XSS in the mailbox auto-reply feature. A user with updateAutoReply permission can store an XSS payload in the auto-reply message, which is rendered unescaped in auto-reply emails sent to customers. As email clients do not en...

7.6CVSS5.7AI score0.00171EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/05/07 6:5 p.m.7 views

CVE-2026-41904 FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer's email client (no CSP), bypassing strip_tags validator with mixed text+HTML content

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply message. The payload is rendered unescaped in the auto-reply email sent to every customer who...

7.6CVSS5.7AI score0.00171EPSS
Exploits0References2
osv
osv
added 2026/05/07 6:5 p.m.3 views

CVE-2026-41904 FreeScout Stored XSS vulnerability in mailbox auto-reply: payload reaches every customer's email client (no CSP), bypassing strip_tags validator with mixed text+HTML content

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user with updateAutoReply permission can store an XSS payload in the mailbox auto-reply message. The payload is rendered unescaped in the auto-reply email sent to every customer who...

7.6CVSS5.9AI score0.00171EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/05/07 12:0 a.m.17 views

PT-2026-38549

Name of the Vulnerable Software and Affected Versions FreeScout versions prior to 1.8.217 Description A user with updateAutoReply permission can store a Cross-Site Scripting XSS payload in the mailbox auto-reply message. This payload is rendered without escaping in the auto-reply emails sent to...

7.6CVSS5.8AI score0.00171EPSS
Exploits0References7
Rows per page
Query Builder