CVE-2017-14597
Affected software: AfterLogic WebMail 7.7 and Aurora 7.7.5; component: AdminPanel via adminpanel/modules/pro/inc/ajax.php. Issue: cross-site scripting (XSS) vulnerability exploitable via the txtDomainName field during domain addition. Root cause: improper handling of input in the AdminPanel domai...