Posted on

GFI Kerio Control 9.3.0 Login Page DOM-Based cross site scripting

A vulnerability classified as critical was found in GFI Kerio Control 9.3.0. Affected by this vulnerability is an unknown part of the file login/?reason=failure&NTLM of the component Login Page. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.