Cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52, and other versions released before 05/12/2006, allows remote attackers to inject arbitrary web script or HTML via the (1) To and (2) From fields in openwebmail-main.pl, and possibly (3) other unspecified vectors related to "openwebmailerror calls that need to display HTML."
References
Configurations
Configuration 1 (hide)
|
History
07 Nov 2023, 01:58
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2006-06-27 01:05
Updated : 2024-02-28 10:42
NVD link : CVE-2006-3229
Mitre link : CVE-2006-3229
CVE.ORG link : CVE-2006-3229
JSON object : View
Products Affected
open_webmail
- open_webmail
CWE