Back to search
CVE-2005-2769
Published: Sep 2, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings that contain ">" or other special characters, which is not properly sanitized by SqWebMail.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
16600
third-party-advisory
x_refsource_SECUNIA
20050829 Secunia Research: SqWebMail HTML Emails Script Insertion Vulnerability
mailing-list
x_refsource_FULLDISC
http://secunia.com/secunia_research/2005-39/advisory/
x_refsource_MISC
14676
vdb-entry
x_refsource_BID
17156
third-party-advisory
x_refsource_SECUNIA
sqwebmail-html-xss(22043)
vdb-entry
x_refsource_XF
USN-201-1
vendor-advisory
x_refsource_UBUNTU
20050829 Secunia Research: SqWebMail HTML Emails Script Insertion
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now