CVE-2015-5379: XSS
First published: Mon Oct 23 2017(Updated: )
Cross-site scripting (XSS) vulnerability in actions.hsp in the Ajax WebMail interface in AXIGEN Mail Server before 9.0 allows remote attackers to inject arbitrary web script or HTML via an email attachment.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Axigen Axigen Mail Server | =8.0 | |
| Axigen Axigen Mail Server | =8.0.1 | |
| Axigen Axigen Mail Server | =8.0.2 | |
| Axigen Axigen Mail Server | =8.0.3 | |
| Axigen Axigen Mail Server | =8.1.0 | |
| Axigen Axigen Mail Server | =8.1.1 | |
| Axigen Axigen Mail Server | =8.1.2 | |
| Axigen Axigen Mail Server | =8.1.3 | |
| Axigen Axigen Mail Server | =8.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- agent/event
- vendor/axigen
- canonical/axigen axigen mail server
- version/axigen axigen mail server/8.0
- version/axigen axigen mail server/8.0.1
- version/axigen axigen mail server/8.0.2
- version/axigen axigen mail server/8.0.3
- version/axigen axigen mail server/8.1.0
- version/axigen axigen mail server/8.1.1
- version/axigen axigen mail server/8.1.2
- version/axigen axigen mail server/8.1.3
- version/axigen axigen mail server/8.2.0