3 matches found
Aker Secure Mail Gateway <= 2.5.2 XSS Vulnerability - Active Check
Aker Secure Mail Gateway is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-6037
Aker Secure Mail Gateway
Aker Secure Mail Gateway "msg_id"跨站脚本漏洞
CVE ID:CVE-2013-6037 Aker Secure Mail Gateway是一款邮件网关解决方案。 由于通过"msgid" GET参数传递到webgui/cf/index.php的输入在返回用户前未能正确过滤,攻击者可以利用漏洞在受影响站点上下文的用户浏览器会话中执行任意HTML和脚本代码。 0 Aker Secure Mail Gateway =2.5.2 厂商补丁: Aker ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.aker.com.br/atualizacoes-asmg?fieldtipovalue=A...