Vulnerability CVE-2023-43319

Vulnerability CVE-2023-43319

Published: 2023-09-25

Description:

Cross Site Scripting (XSS) vulnerability in the Sign-In page of IceWarp WebClient 10.3.5 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the username parameter.

References:

https://medium.com/@muthumohanprasath.r/reflected-cross-site-scripting-on-icewarp-webclient-product-cve-2023-43319-c2ad758ac2bc

Copyright 2026, cxsecurity.com