cvedb.io
CVE-2022-27105
MEDIUM · CVSS 5.4
EPSS exploitation probability: 0%
Published 2022-07-26T22:15:10.753 · Last modified 2026-06-17T04:36:21.963

Summary

InMailX Outlook Plugin < 3.22.0101 is vulnerable to Cross Site Scripting (XSS). InMailX Connection names are not sanitzed in the Outlook tab, which allows a local user or network administrator to execute HTML / Javascript in the Outlook of users.

Affected products

digitus — inmailx

Does this affect you?

Add your gear to cvedb and we'll alert you only when digitus ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.