Volerion logoVolerion
Volerion logoVolerion

HSC MailInspector Cross-Site Scripting Vulnerability

Vulnerability

A cross-site scripting (XSS) vulnerability has been identified in HSC MailInspector version 5.3.3-7. The issue arises in the '/police/WarningUrlPage.php' endpoint, where user-supplied input is not properly sanitized, allowing the execution of obfuscated JavaScript in the user's browser.

Impact

Exploitation of this vulnerability allows for cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.

Added: May 18, 2026, 6:26 PM
Updated: May 18, 2026, 6:26 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
1.7
exploitability
6.2
remediation
0.0
relevance
8.7
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.