2020-12-31 07:45:50
twcert
PUBLISHED
HGiga MailSherlock does not validate user parameters on multiple login pages. Attackers can use the vulnerability to inject JavaScript syntax for XSS attacks.