Cross-site scripting (XSS) vulnerability in the print_header_uc function for SqWebMail 4.0.4 and previous versions, and possibly 3.x, allows remote malicious users to inject arbitrary web script or HRML via (1) e-mail headers or (2) a message with a "message/delivery-status" MIME Content-Type.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
inter7 sqwebmail 4.0.4 |