Cross-site scripting (XSS) vulnerability in _error in Ability Mail Server 1.18 allows remote malicious users to inject arbitrary web script or HTML via the erromsg parameter.
source: wwwsecurityfocuscom/bid/10695/info
Ability Mail Server is reported prone to multiple vulnerabilities that may allow a remote attacker to carry out cross-site scripting and denial of service attacks
The server is prone to a cross-site scripting vulnerability that may allow an attacker to execute arbitrary HTML and script code in ...