EUVD-2015-0923

Malware in sbrugna...

RAKUS MailDealer Attachment Name Cross-Site Scripting Vulnerability

RAKUS MailDealer is a mail management software. A cross-site scripting vulnerability exists in RAKUS MailDealer, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive information or hijack user sessions wh...

CVE-2015-0915

Cross-site scripting XSS vulnerability in RAKUS MailDealer 11.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted attachment filename...

Cross site scripting

Cross-site scripting XSS vulnerability in RAKUS MailDealer 11.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted attachment filename...

CVE-2015-0915

RAKUS MailDealer (MailDealer 11.2.1 and earlier) is affected by a cross-site scripting (CWE-79) vulnerability due to a flaw in processing attachment filenames. This allows remote attackers to cause arbitrary script execution in a user’s browser when a crafted attachment filename is viewed. The co...

MailDealer vulnerable to cross-site scripting

Overview MailDealer provided by RAKUS Co.,Ltd. contains a persistent cross-site scripting CWE-79 vulnerability due to a flaw in processing file names of attachments. Keigo YAMAZAKI of LAC Co., Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information...

JVN#20133698: MailDealer vulnerable to cross-site scripting

MailDealer provided by RAKUS Co.,Ltd. contains a persistent cross-site scripting CWE-79 vulnerability due to a flaw in processing file names of attachments. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest version according to...