Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Merak Webmail Server 5.2.7 allow remote attackers to inject arbitrary web script or HTML via the (1) category, (2) cserver, (3) ext, (4) global, (5) showgroups, (6) or showlite parameters to address.html, or the (7) spage or (8) autoresponder parameters to settings.html, the (9) folder parameter to readmail.html, or the (10) attachmentpage_text_error parameter to attachment.html, (11) folder, (12) ct, or (13) cv parameters to calendar.html, (14) an <img> tag, or (15) the subject of an e-mail message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多个Merak Mail Server Webmail 漏洞
Vulnerability Description
Merak Webmail Server 5.2.7版本中存在多个跨站脚本(XSS)漏洞。远程攻击者可以通过(1) category, (2) cserver, (3) ext, (4) global, (5) showgroups, (6) address.html中的showlite参数,或者(7) spage 或者 (8)settings.html中的autoresponder参数,(9)readmail.html中的folder参数,或者(10) attachment.html中的attachme
CVSS Information
N/A
Vulnerability Type
N/A