CVE-2024-28063 Information

Description

Kiteworks Totemomail through 7.0.0 allows /responsiveUI/EnvelopeOpenServlet envelopeRecipient reflected XSS.

Reference

https://www.objectif-securite.ch/advisories/totemomail-reflected-xss.txt