CVE-2012-2571

CVE-2012-2571 describes multiple XSS vulnerabilities in WinWebMail Server 3.8.1.6 that allow remote injection of web script or HTML via e-mail message bodies, using (1) SCRIPT elements, (2) CSS expression properties, (3) STYLE attribute CSS expressions, (4) crafted IFRAME SRC attributes, or (5) U...