Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting vulnerabilities in MERAK Mail Server 7.6.0 with Icewarp Web Mail 5.3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) username parameter to login.html, (2) accountid parameter to accountsettings_add.html, or the (3) note, (4) title, and (5) location fields to calendar.html.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Icewarp WebMail 多个 跨站脚本攻击漏洞
Vulnerability Description
Merak Mail Server是一款功能强大的邮件服务程序 使用Icewarp Web Mail 5.3.0的MERAK Mail Server 7.6.0版本中的存在多个跨站点脚本漏洞。 远程攻击者可以通过login.html 的username参数, accountsettings_add.html的accountid参数,或者calendar.html 的note、title、location字段,注入任意web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A