AdminPanel in AfterLogic WebMail 7.7 and Aurora 7.7.5 has XSS via the txtDomainName field to adminpanel/modules/pro/inc/ajax.php during addition of a domain.Referenceshttps://auroramail.wordpress.com/2017/08/28/vulnerability-in-webmailaurora-closed/
