CVE-2026-23604

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4

Description GFI MailEssentials AI versions prior to 22.4 are affected by a stored cross-site scripting issue within the Keyword Filtering rule creation process. A user with valid credentials can inject HTML or JavaScript code into the ctl00$ContentPlaceHolder1$pv1$TXB RuleName parameter of the '/MailEssentials/pages/MailSecurity/contentchecking.aspx' API endpoint. This injected code is then saved and displayed within the management interface, enabling script execution in the context of the logged-in user.

Recommendations Update GFI MailEssentials AI to version 22.4 or later.