Arbitrary Code Injection through Cross-Site Scripting (XSS) in totemomail 6.0.0 build 570 Notification Template

CVE-2018-15511 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the 'Notification template' feature of totemomail 6.0.0 build 570 allows remote attackers to inject arbitrary web script or HTML.

Learn more about our Web App Pen Testing.