3 matches found
CVE-2004-2447
Cross-site scripting XSS vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to 1 viewmail.tagz, 2 the index script under /user/, 3 members.tagz, 4 general.tagz, 5 advanced.tagz, or 6 list.tagz...
1st Class Mail Server 4.0 1 - members.tagz Cross-Site Scripting
source: https://www.securityfocus.com/bid/10089/info Multiple vulnerabilities have been identified in the application that may allow a remote attacker to carry out directory traversal and cross-site scripting attacks. 1st Class Mail Server version 4.01 is reported to be prone to these issues,...
1st Class Mail Server 4.0 1 - viewmail.tagz Cross-Site Scripting
source: https://www.securityfocus.com/bid/10089/info Multiple vulnerabilities have been identified in the application that may allow a remote attacker to carry out directory traversal and cross-site scripting attacks. 1st Class Mail Server version 4.01 is reported to be prone to these issues,...