Axigen Mail Server < 10.5.7 - Cross-Site Scripting via serverName_input Parameter
Cross Site Scripting vulnerability in Axigen WebMail prior to 10.3.3.61 allows a remote attacker to escalate privileges via a crafted script to the serverName_input parameter.