CVE-2026-23617

Name of the Vulnerable Software and Affected Versions GFI MailEssentials AI versions prior to 22.4

Description GFI MailEssentials AI versions before 22.4 are affected by a stored cross-site scripting issue. An authenticated user can inject HTML or JavaScript code into the ctl00$ContentPlaceHolder1$pvGeneral$TXB Condition parameter of the /MailEssentials/pages/MailSecurity/ASKeywordChecking.aspx API endpoint. This input is then saved and displayed within the management interface, leading to script execution within the context of a logged-in user.

Recommendations Update GFI MailEssentials AI to version 22.4 or later.