CVE-2005-2276
CVE-2005-2276
Cross-site scripting (XSS) vulnerability in Novell Groupwise WebAccess 6.5 before July 11, 2005 allows remote attackers to inject arbitrary web script or HTML via an e-mail message with an encoded javascript URI (e.g. "jAvascript" in an IMG tag.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/26001unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://marc.info/?l=bugtraq&m=112181451014783&w=2http://secunia.com/advisories/16098/http://securitytracker.com/id?1014515https://exchange.xforce.ibmcloud.com/vulnerabilities/21421http://support.novell.com/cgi-bin/search/searchtid.cgi?/10098301.htmhttp://www.infobyte.com.ar/adv/ISR-11.htmlhttp://www.osvdb.org/18064http://www.securityfocus.com/bid/14310