Danil Smirnov

1 exploit Active since May 2026
CVE-2026-44742 WRITEUP HIGH WRITEUP
Postorius < 1.3.13 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2026.
CVSS 7.2