2 matches found
CVE-2015-0915
RAKUS MailDealer (MailDealer 11.2.1 and earlier) is affected by a cross-site scripting (CWE-79) vulnerability due to a flaw in processing attachment filenames. This allows remote attackers to cause arbitrary script execution in a user’s browser when a crafted attachment filename is viewed. The co...
CVE-2015-0915
Cross-site scripting XSS vulnerability in RAKUS MailDealer 11.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted attachment filename...