Insufficient Input Filtering in Raiden MAILD Mail Server Website Mail Field Leads to XSS Attack
CVE-2022-41676 · MEDIUM Severity
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Raiden MAILD Mail Server website mail field has insufficient filtering for user input. A remote attacker with general user privilege can send email using the website with malicious JavaScript in the input field, which triggers XSS (Reflected Cross-Site Scripting) attack to the mail recipient.
Learn more about our Web App Pen Testing.