CVE-2012-2573

CVE-2012-2573 describes multiple cross-site scripting (XSS) vulnerabilities in T-dah WebMail 3.2.0-2.3. The flaws allow an attacker to inject arbitrary script/HTML through an e-mail message body using several vectors, including: a SCRIPT element; CSS expressions or STYLE attribute; ONLOAD on BODY...