CVE-2006-3233

Name of the Vulnerable Software and Affected Versions Open WebMail (OWM) versions prior to 2.52

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the from field. This enables attackers to execute malicious scripts on the victim's browser.

Recommendations For Open WebMail (OWM) versions prior to 2.52, update to a version released after 06/18/2006 to resolve the issue. As a temporary workaround, consider restricting input to the from field to minimize the risk of exploitation.