CVE-2006-0091

Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange 0.8.1-6 and earlier, with "Inline HTML" enabled, allows remote attackers to inject arbitrary web script or HTML via e-mail attachments, which are rendered inline.
Configurations

Configuration 1 (hide)

cpe:2.3:a:open-xchange:open-xchange:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-01-05 11:03

Updated : 2024-02-28 10:42


NVD link : CVE-2006-0091

Mitre link : CVE-2006-0091

CVE.ORG link : CVE-2006-0091


JSON object : View

Products Affected

open-xchange

  • open-xchange