← back
CVE-2004-0337

CVE-2004-0337

EPSS 2.0%
Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. NOTE: the vendor states that this bug could not be reproduced, so this issue may be REJECTed in the future.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/23776unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.htmlhttp://marc.info/?l=bugtraq&m=107799540630302&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/15351http://www.securityfocus.com/bid/9777