Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the View Headers (aka viewheaders) functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via (1) the Subject header, (2) the From header, and (3) certain other unspecified headers.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ArGoSoft Mail Server Pro viewheaders脚本代码注入漏洞
Vulnerability Description
ArGoSoft Mail Server是一款Windows平台下的全功能的邮件服务器,支持POP3/SMTP/FINGER等协议。 ArGoSoft Mail Server在处理邮件显示时存在输入验证漏洞,远程攻击者可能在客户机器上执行恶意脚本代码。 邮件在由"View Headers"功能显示之前,ArGoSoft Mail Server Pro没有正确的过滤各种邮件头(如"标题"和"寄件人"),导致攻击者可以注入任意HTML和脚本代码。如果用户浏览了恶意的邮件头,就会在浏览器中执行注入的代码。
CVSS Information
N/A
Vulnerability Type
N/A