2019-10-11 10:35:20
mitre
PUBLISHED
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/ with the parameter password is non-persistent in 10.2.0.