4.3
CVSSv2

CVE-2003-1522

Published: 31/12/2003 Updated: 29/07/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in PSCS VPOP3 Web Mail server 2.0e and 2.0f allows remote malicious users to inject arbitrary web script or HTML via the redirect parameter to the admin/index.html page.

Vulnerable Product Search on Vulmon Subscribe to Product

pscs vpop3 web mail server 2.0e

pscs vpop3 web mail server 2.0f

Exploits

source: wwwsecurityfocuscom/bid/8869/info It has been reported that PSCS VPOP3 Email Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to embed malicious HTML and script code in a link The issue is reported to be present in the WebAdmin utility of the software because of improper sanitization of ...