2 matches found
Atmail Webmail 4.x < 4.6.1 (4.61) 'Global.pm' XSS
According to its version, the Atmail Webmail install on the remote host is 4.x prior to 4.6.1 4.61. It is, therefore, potentially affected by an input-validate error in the file 'Global.pm' that could allow cross-site scripting XSS attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2006-6702
The connected Nessus entry for Atmail Webmail identifies CVE-2006-6702 as a cross-site scripting (XSS) flaw in Global.pm affecting Atmail Webmail 4.x prior to 4.6.1 (4.61). The vulnerability arises from an input‑validation error in Global.pm that could allow arbitrary web script or HTML to be inj...