Lucene search
PRIOn knowledge basePRION:CVE-2023-28705HistoryJun 02, 2023 - 11:15 a.m.
Cross site scripting
2023-06-0211:15:00
PRIOn knowledge base
www.prio-n.com
8
cross site scripting
email filtering
remote attacker
phishing emails
javascript injection
reflected attack
Openfind Mail2000 has insufficient filtering special characters of email content of its content filtering function. A remote attacker can exploit this vulnerability using phishing emails that contain malicious web pages injected with JavaScript. When users access the system and open the email, it triggers an XSS (Reflected Cross-site scripting) attack.
Related
cve
cve
CVE-2023-28705
2023-06-02 11:15:10
cvelist
cvelist
CVE-2023-28705 Openfind Mail2000 - XSS (Reflected Cross-site scripting)
2023-06-02 00:00:00
nvd
nvd
CVE-2023-28705
2023-06-02 11:15:10