5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
69.0%
Cross-site scripting (XSS) vulnerability in webmail in Open-Xchange 0.8.1-6 and earlier, with βInline HTMLβ enabled, allows remote attackers to inject arbitrary web script or HTML via e-mail attachments, which are rendered inline.
marc.info/?l=full-disclosure&m=113629092325679&w=2
secunia.com/advisories/18285
securitytracker.com/id?1015431
www.vupen.com/english/advisories/2006/0034