cgi-bin/go in CyberSolutions CyberMail 5 or later allows XSS via the ACTION parameter.
6.1CVSS
5.9AI Score
0.001EPSS
Cross-site scripting vulnerability in CyberMail Ver.6.x and Ver.7.x allows remote attackers to inject arbitrary script or HTML via a specially crafted URL.
6.1CVSS
6AI Score
0.002EPSS
Open redirect vulnerability in CyberMail Ver.6.x and Ver.7.x allows remote attackers to redirect users to arbitrary sites and conduct phishing attacks via a specially crafted URL.
6.1CVSS
6.2AI Score
0.001EPSS