PHP-Nuke 6.0 Web Mail Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6400/info A vulnerability has been discovered in the PHP-Nuke web mail module. Due to insufficient sanitization of HTML emails it is possible for an attacker to embed script code into malicious messages. Opening an email...

Merak Mail Server < 7.5.2 Web Mail Module Multiple Vulnerabilities

Binary data 2157.prm...

Merak Mail Server < 7.5.2 Web Mail Module Multiple Vulnerabilities

Binary data 2158.prm...

CVE-2004-0588

Cross-site scripting XSS vulnerability in the web mail module for Usermin 1.070 allows remote attackers to insert arbitrary HTML and script via e-mail messages...

CVE-2004-0588

The CVE-2004-0588 entry describes an XSS vulnerability in Usermin’s web mail module (version around 1.070) that allows remote attackers to inject arbitrary HTML/script via e-mail messages. Affected software is Usermin, with the issue arising from improper sanitization of email content, enabling s...

PHP-Nuke 6.0 - Web Mail Remote PHP Script Execution

source: https://www.securityfocus.com/bid/6399/info A vulnerability has been discovered in the PHP-Nuke Web Mail module. When a user opens an email that contains an attachment, the file will be put in a remotely accessible web directory. It has been reported that the vulnerable module fails to...

PHP-Nuke 6.0 - Web Mail Script Injection

PHP-Nuke 6.0 - Web Mail Script Injection source: https://www.securityfocus.com/bid/6400/info A vulnerability has been discovered in the PHP-Nuke web mail module. Due to insufficient sanitization of HTML emails it is possible for an attacker to embed script code into malicious messages. Opening an...