Unrated severityNVD Advisory· Published Dec 21, 2023· Updated Aug 2, 2024
CVE-2023-48115
CVE-2023-48115
Description
SmarterTools SmarterMail 8495 through 8664 before 8747 allows stored DOM XSS because an XSS protection mechanism is skipped when messageHTML and messagePlainText are set in the same request.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 8495 through 8664 before 8747
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.