Arbitrary Web Script Injection Vulnerability in Coremail XT 3.0

Arbitrary Web Script Injection Vulnerability in Coremail XT 3.0

CVE-2018-14503 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in intervalCheck.jsp in Coremail XT 3.0 allows remote attackers to inject arbitrary web script or HTML via the sid parameter.

Learn more about our Web App Pen Testing.