Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows remote malicious users to inject arbitrary web script or HTML via a file attachment that is processed by the Display feature. NOTE: the severity of this issue has been disputed by the developer.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
inter7 sqwebmail 3.4.1 |
||
inter7 sqwebmail 4.0.4_2004-05-24 |
||
inter7 sqwebmail 4.0.5 |
||
inter7 sqwebmail 3.5.0 |
||
inter7 sqwebmail 3.5.1 |
||
inter7 sqwebmail 4.0.6 |
||
inter7 sqwebmail 4.0.7 |
||
inter7 sqwebmail 3.5.2 |
||
inter7 sqwebmail 3.5.3 |
||
inter7 sqwebmail 5.0.0 |
||
inter7 sqwebmail 5.0.1 |
||
inter7 sqwebmail 3.6.0 |
||
inter7 sqwebmail 3.6.1 |
||
inter7 sqwebmail 5.0.4 |