CVE-2002-1526

Name of the Vulnerable Software and Affected Versions EMU Webmail version 5.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary HTML or script via the email address field in emumail.cgi. This could potentially lead to unauthorized actions on the web application.

Recommendations For EMU Webmail version 5.0, update the emumail.cgi script to properly sanitize and validate user input in the email address field to prevent XSS attacks. As a temporary workaround, consider restricting access to the emumail.cgi script until a patch is available.