Multiple cross-site scripting (XSS) vulnerabilities in Proxmox Mail Gateway prior to 3.1-5829 allow remote malicious users to inject arbitrary web script or HTML via the (1) state parameter to objects/who/index.htm or (2) User email address to quarantine/spam/manage.htm.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
proxmox mail gateway 3.1-5670 |
||
proxmox mail gateway |
||
proxmox mail gateway 3.1-5673 |
||
proxmox mail gateway 3.0 |
||
proxmox mail gateway 3.1 |