PT-2002-2430 · Basilix · Basilix Webmail

Publicado

2002-12-31

Atualizado

2017-07-11

CVE-2002-1708

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions BasiliX Webmail version 1.10

Description A cross-site scripting issue allows remote attackers to execute arbitrary script as other users. This is achieved by injecting script into the subject or message fields.

Recommendations For BasiliX Webmail version 1.10, update to a version that includes a fix for this issue, as using outdated software can pose significant security risks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-1708

Produtos afetados

Basilix Webmail

PT-2002-2430 · Basilix · Basilix Webmail

CVE-2002-1708

Identificadores relacionados

Produtos afetados

Referências · 6