Loading
IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][controller] is non-persistent in 10.1.3 and 10.2.0.
Use CWE-79, Icewarp vendor hub and Webclient product page to widen CVE-2010-5337 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2010-5335, CVE-2010-5334 and CVE-2023-43319 for nearby disclosures in the same product family.