Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/02/20 7:40 p.m.6 views

CVE-2026-23613

GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the URI DNS Blocklist configuration page. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$TXBURIs parameter to...

5.4CVSS5.4AI score0.00163EPSS
Exploits0References1
NVD
NVD
added 2026/02/19 6:24 p.m.7 views

CVE-2026-23613

GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the URI DNS Blocklist configuration page. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$TXBURIs parameter to...

5.4CVSS0.00163EPSS
Exploits0References2
CVE
CVE
added 2026/02/19 5:57 p.m.14 views

CVE-2026-23613

CVE-2026-23613 affects GFI MailEssentials AI prior to 22.4. A stored cross-site scripting vulnerability exists in the DNS Blocklist URI configuration page. An authenticated user can submit HTML/JavaScript via the ctl00$ContentPlaceHolder1$pv1$TXB_URIs parameter to /MailEssentials/pages/MailSecuri...

5.4CVSS5.4AI score0.00163EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.9 views

PT-2026-20893

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4 Description GFI MailEssentials AI versions before 22.4 have a stored cross-site scripting issue in the URI DNS Blocklist configuration page. A logged-in user can inject HTML or JavaScript code into...

5.4CVSS5.2AI score0.00163EPSS
Exploits0References6
Rows per page
Query Builder