CVE-2008-5734

CVE-2008-5734

EPSS 1.1%

Cross-site scripting (XSS) vulnerability in WebMail Pro in IceWarp Software Merak Mail Server 9.3.2 allows remote attackers to inject arbitrary web script or HTML via an IMG element in an HTML e-mail message.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://blog.vijatov.com/index.php?itemid=11 http://osvdb.org/50885 http://secunia.com/advisories/32770 https://exchange.xforce.ibmcloud.com/vulnerabilities/47533 http://www.securityfocus.com/bid/32969