Multiple cross-site scripting (XSS) vulnerabilities in FormMail.pl in Matt Wright FormMail 1.92, and possibly earlier, allow remote malicious users to inject arbitrary web script or HTML via javascript: URIs in the (1) request and (2) return_link_url parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
matt wright formmail |