Lucene search
China National Vulnerability DatabaseCNVD-2021-91424HistoryNov 21, 2021 - 12:00 a.m.
SmarterMail Cross-Site Scripting Vulnerability
2021-11-2100:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
smartermail
cross-site scripting
vulnerability
data validation
filtering
user-supplied data
javascript code
client side
smartertools inc
smtp authentication
spam filtering
statistics
EPSS
0.001
Percentile
36.0%
SmarterMail is a mail server software from Smartertools, Inc. The software supports spam filtering, statistics, and simple mail transfer protocol SMTP authentication.SmarterMail has a cross-site scripting vulnerability in 16.x through 100.x. The vulnerability stems from a lack of data validation filtering of user-supplied data and output. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
Related
cve
cve
CVE-2021-43977
2021-11-17 17:15:08
nvd
nvd
CVE-2021-43977
2021-11-17 17:15:08
prion
prion
Cross site scripting
2021-11-17 17:15:00
cvelist
cvelist
CVE-2021-43977
2021-11-17 16:54:13