Hsclabs Mailinspector
4 CVEs affecting Hsclabs Mailinspector. Latest disclosed: 2026-05-18. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-29963 | High | 7.5 | 2026-05-18 | HSC MailInspector 5.3.3-7 has a Path Traversal vulnerability due to improper validation of user-supplied input in the /tap/dw.php endpoint. The text parameter… |
CVE-2026-29962 | High | 7.5 | 2026-05-18 | HSC MailInspector v5.3.3-7 contains a Local File Inclusion (LFI) vulnerability caused by improper control of user-supplied file paths. The endpoint /vendor/php… |
CVE-2026-29965 | Medium | 6.1 | 2026-05-18 | HSC MailInspector 5.3.3-7 is vulnerable to Cross Site Scripting (XSS) in the /police/WarningUrlPage.php endpoint due to improper neutralization of user-supplie… |
CVE-2026-29964 | Medium | 6.1 | 2026-05-18 | HSC MailInspector v5.3.3-7 contains a Cross-Site Scripting (XSS) vulnerability in the /tap/tap.php endpoint due to improper neutralization of user-controlled i… |