CVE-2026-23609

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4

Description GFI MailEssentials AI contains a stored cross-site scripting issue in the Perimeter SMTP Servers configuration page. A logged-in user can inject HTML or JavaScript code into the ctl00$ContentPlaceHolder1$pv3$txtDescription parameter of the '/MailEssentials/pages/MailSecurity/PerimeterSMTPServers.aspx' API endpoint. This injected code is then saved and displayed within the management interface, leading to script execution within the user's session.

Recommendations Update GFI MailEssentials AI to version 22.4 or later.