CVE-2006-3233
CVE-2006-3233 describes a cross-site scripting (XSS) vulnerability in Open WebMail (OWM) 2.52 and earlier builds released before 2006-06-18, specifically in the openwebmail-read.pl component. An attacker can inject arbitrary web script or HTML via the from field, enabling potential credential or ...