CVE-2023-49780

Name of the Vulnerable Software and Affected Versions acmailer CGI versions 4.0.5 and earlier

Description A cross-site scripting issue exists, allowing an arbitrary script to be executed on the web browser of the user who accessed the management page of the affected product. This can occur when the user accesses the management page, potentially leading to unauthorized actions.

Recommendations For versions 4.0.5 and earlier, consider disabling access to the management page until a fix is available. Restrict access to the affected CGI module to minimize the risk of exploitation. Avoid using the management page in the affected product until the issue is resolved.