Aryanic HighMail (High CMS) versions 2020 and before are vulnerable To Reflected cross-site scripting(XSS) attacks. It allows remote attackers to inject arbitrary web script or HTML, via ‘user’ to LoginForm.
Recommendations
Update Aryanic HighMail (High CMS) to the latest version