3 matches found
Debian Security Advisory DSA 1010-1 (ilohamail)
The remote host is missing an update to ilohamail announced via advisory DSA 1010-1. Ulf Härnhammar from the Debian Security Audit Project discovered that ilohamail, a lightweight multilingual web-based IMAP/POP3 client, does not always sanitise input provided by users which allows remote attacke...
[SECURITY] [DSA 1010-1] New ilohamail packages fix cross-site scripting vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1010-1 [email protected] http://www.debian.org/security/ Martin Schulze March 20th, 2006 http://www.debian.org/security/faq -...
CVE-2005-1120
Multiple cross-site scripting XSS vulnerabilities in IlohaMail 0.8.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the e-mail 1 body, 2 filename, or 3 MIME type...