CVE-2021-43574

Name of the Vulnerable Software and Affected Versions Atmail version 6.5.0

Description The issue affects the WebAdmin Control Panel, allowing XSS via the format parameter to the default URI. This problem only affects products that are no longer supported by the maintainer.

Recommendations For Atmail version 6.5.0, as a temporary workaround, consider restricting access to the default URI or disabling the use of the format parameter until a resolution can be determined. However, since this version is no longer supported, at the moment, there is no information about a newer version that contains a fix for this vulnerability.