First published: Thu Dec 01 2011(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open (aka AtMail Open-Source edition) 1.04 allow remote attackers to inject arbitrary web script or HTML via the func parameter to (1) ldap.php or (2) search.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Atmail Atmail Open | =1.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.