Debian Security Advisory DSA 199-1 (mhonarc)

The remote host is missing an update to mhonarc announced via advisory DSA 199-1. OpenVAS Vulnerability Test $Id: deb1991.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 199-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian DSA-199-1 : mhonarc - XSS

Steven Christey discovered a cross site scripting vulnerability in mhonarc, a mail to HTML converter. Carefully crafted message headers can introduce cross site scripting when mhonarc is configured to display all headers lines on the web. However, it is often useful to restrict the displayed head...

CVE-2002-1307

Summary: CVE-2002-1307 is a cross-site scripting (XSS) vulnerability in MHonArc versions 2.5.12 and earlier, exploitable when an email message contains a script embedded in a MIME header name. The issue allows remote attackers to inject script/HTML via headers, with the impact of partial confiden...

CVE-2002-1307

Cross-site scripting vulnerability XSS in MHonArc 2.5.12 and earlier allows remote attackers to insert script or HTML via an email message with the script in a MIME header name...