CVE-2007-0651
MailEnable Professional (before 2.37) is affected by CVE-2007-0651 with multiple XSS flaws in the Web Mail Client. The vulnerabilities allow remote injection of arbitrary JavaScript by exploiting unsanitized content in email messages and in the ID parameter for mewebmail/base/default/lang/EN/{rig...