CVE-2022-31200 Information

Description

Atmail 5.62 allows XSS via the mail/parse.php?file=html/$this-%3ELanguage/help/filexp.html&FirstLoad=1&HelpFile=file.html Search Terms field.

Reference

https://portswigger.net/blog/exploiting-xss-in-post-requests https://medium.com/@rohitgautam26/cve-2022-31200-5117bac8d548