2 matches found
IceWarp Mail Server Cross-Site Script Injection Vulnerability
IceWarp Mail Server is a mail server product from IceWarp USA. The product supports email archiving, SmartAttach attachments, automatic migration and more. A cross-site scripting vulnerability exists in webdav/ticket/ URIs in IceWarp Mail Server version 12.0.3. A remote attacker can exploit this...
CVE-2018-7475
Cross-site scripting XSS vulnerability for webdav/ticket/ URIs in IceWarp Mail Server 12.0.3 allows remote attackers to inject arbitrary web script or HTML...