CVE-2012-2588

2014-09-1914:00:00

certcc

www.cve.org

5.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.9%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in MailEnable Enterprise 6.5 allow remote attackers to inject arbitrary web script or HTML via the (1) From, (2) To, or (3) Subject header or (4) body in an SMTP e-mail message.

References

osvdb.org/84589

secunia.com/advisories/50205

www.exploit-db.com/exploits/20351

www.securityfocus.com/bid/54900

exchange.xforce.ibmcloud.com/vulnerabilities/77547