PT-2026-8360 · Smartertools · Smartermail
Egidio Romano
·
Published
2026-01-26
·
Updated
2026-02-22
·
CVE-2026-26930
CVSS v3.1
7.2
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
SmarterTools SmarterMail versions prior to 9526
Description
SmarterTools SmarterMail is susceptible to a cross-site scripting (XSS) issue through MAPI requests. The issue allows for the injection of malicious scripts via crafted MAPI requests.
Recommendations
Update SmarterTools SmarterMail to version 9526 or later.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Smartermail