2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Mailbird before 2.7.5.0 r allow remote attackers to execute arbitrary JavaScript in a privileged context via a crafted HTML mail message. This vulnerability is distinct from CVE-2015-4657...
CVE-2015-4657
CVE-2015-4657: XSS vulnerability in Mailbird 2.0.16.0 and earlier allowing remote script injection via a crafted URL in an e-mail body. CVSS2 score 4.3 (MEDIUM); impact limited to partial integrity; no confidentiality or availability impact. No exploitation details or fixes are provided in the av...