Title:IceWarp Server 跨站脚本漏洞 (CVE-2024-55218) Description:IceWarp Server是捷克爱思华宝(IceWarp)公司的一个邮寄服务器。 IceWarp Server 10.2.1版本存在安全漏洞,该漏洞源于meta参数处理不足,导致容易受到跨站脚本攻击。
Description
IceWarp Server 10.2.1 is vulnerable to Cross Site Scripting (XSS) via the meta parameter.
File Snapshot
id: CVE-2024-55218
info:
name: IceWarp Server 10.2.1 - Cross-Site Scripting
author: s4e-io
se
...
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.