CVE-2021-36720

PineApp - Mail Secure contains a cross-site scripting (XSS) vulnerability in the /blocking.php?url= parameter that allows injection of arbitrary script code (e.g., ). This can lead to cookie theft and related session information exposure as described in multiple sources. The vulnerability is tied...