Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in AMAX Magic Winmail Server 4.2 (build 0824) and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) retid parameter in badlogin.php, (2) Content-Type headers in HTML mails, and (3) HTML mail attachments.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AMAX Magic Winmail Server跨站脚本漏洞
Vulnerability Description
AMAX Winmail Server是美国AMAX集团的一套邮件服务器软件。该软件支持SMTP、POP3、WEBMAIL、反病毒、SMTP验证和远程控制等功能。 AMAX Magic Winmail Server 4.2 (build 0824)和更早的版本存在跨站脚本漏洞,这允许远程攻击者通过 (1) badlogin.php页面中的retid参数(2)HTML邮件中的 Content-Type 头域,和 (3) HTML邮件附件 来注入任意的WEB脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A