WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote malicious users to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alt-n mdaemon 8.1.3 |
||
alt-n worldclient 8.1.3 |