IceWarp Web Mail 5.5.1 calendar_w.html createdataCX Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/14980/info IceWarp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

CVE-2005-3131

Multiple cross-site scripting XSS vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the 1 id parameter to blank.html, or the createdataCX parameter to 2 calendard.html, 3...