Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.08 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) testaddr or (2) testpass parameter to auth-settings.php; (3) hostname, (4) domainname, or (5) mailserver parameter to setup-relay.php; or (6) subnetmask or (7) defaultroute parameter to setup-network.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spamtitan spamtitan |