N/A

Two XSS vulnerabilities were fixed in message list and view in the Hupa Webmail application from the Apache James project. An attacker could send a carefully crafted email to a user of Hupa which would trigger a XSS when the email was opened or when a list of messages were viewed. This issue was addressed in Hupa 0.0.3.

N/A

N/A

Hupa 跨站脚本漏洞

Hupa是一款使用GWT（Google Web Toolkit）编写的电子邮件客户端，主要用于阅读、发送和管理电子邮件。 Hupa 0.0.3之前的版本中存在跨站脚本漏洞。远程攻击者可通过发送特制的邮件利用该漏洞执行代码。

N/A

N/A