USN-8323-1: Postorius vulnerability
Source: Ubuntu
Published:
<p>It was discovered that Postorius did not properly escape HTML in message subjects when rendering the Held messages pop-up. An attacker could possibly use this issue to inject arbitrary HTML, resulting in exposure of sensitive information.</p> <p>It was discovered that Postorius did not properly e