Vulnerability Details CVE-2021-40377
SmarterTools SmarterMail 16.x before build 7866 has stored XSS. The application fails to sanitize email content, thus allowing one to inject HTML and/or JavaScript into a page that will then be processed and stored by the application.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 65.1%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2021-40377
-
cpe:2.3:a:smartertools:smartermail:16.0.6345
-
cpe:2.3:a:smartertools:smartermail:16.0.6348
-
cpe:2.3:a:smartertools:smartermail:16.0.6362
-
cpe:2.3:a:smartertools:smartermail:16.0.6369
-
cpe:2.3:a:smartertools:smartermail:16.0.6376
-
cpe:2.3:a:smartertools:smartermail:16.0.6382
-
cpe:2.3:a:smartertools:smartermail:16.0.6390
-
cpe:2.3:a:smartertools:smartermail:16.0.6397
-
cpe:2.3:a:smartertools:smartermail:16.3.6663
-
cpe:2.3:a:smartertools:smartermail:16.3.6670
-
cpe:2.3:a:smartertools:smartermail:16.3.6677
-
cpe:2.3:a:smartertools:smartermail:16.3.6684
-
cpe:2.3:a:smartertools:smartermail:16.3.6691
-
cpe:2.3:a:smartertools:smartermail:16.3.6698
-
cpe:2.3:a:smartertools:smartermail:16.3.6705
-
cpe:2.3:a:smartertools:smartermail:16.3.6729
-
cpe:2.3:a:smartertools:smartermail:16.3.6733
-
cpe:2.3:a:smartertools:smartermail:16.3.6740
-
cpe:2.3:a:smartertools:smartermail:16.3.6744
-
cpe:2.3:a:smartertools:smartermail:16.3.6751
-
cpe:2.3:a:smartertools:smartermail:16.3.6754
-
cpe:2.3:a:smartertools:smartermail:16.3.6768
-
cpe:2.3:a:smartertools:smartermail:16.3.6775
-
cpe:2.3:a:smartertools:smartermail:16.3.6782
-
cpe:2.3:a:smartertools:smartermail:16.3.6795
-
cpe:2.3:a:smartertools:smartermail:16.3.6799
-
cpe:2.3:a:smartertools:smartermail:16.3.6802
-
cpe:2.3:a:smartertools:smartermail:16.3.6809
-
cpe:2.3:a:smartertools:smartermail:16.3.6816
-
cpe:2.3:a:smartertools:smartermail:16.3.6821
-
cpe:2.3:a:smartertools:smartermail:16.3.6830
-
cpe:2.3:a:smartertools:smartermail:16.3.6841
-
cpe:2.3:a:smartertools:smartermail:16.3.6843
-
cpe:2.3:a:smartertools:smartermail:16.3.6855
-
cpe:2.3:a:smartertools:smartermail:16.3.6870
-
cpe:2.3:a:smartertools:smartermail:16.3.6885
-
cpe:2.3:a:smartertools:smartermail:16.3.6893
-
cpe:2.3:a:smartertools:smartermail:16.3.6897
-
cpe:2.3:a:smartertools:smartermail:16.3.6915
-
cpe:2.3:a:smartertools:smartermail:16.3.6970
-
cpe:2.3:a:smartertools:smartermail:16.3.6989