IceWarp Multiple Cross-Site Scripting Vulnerabilities

No exploit is required.

Sample URI have been provided:

http://www.example.com:32000/mail/blank.html?id=[xss_here]
http://www.example.com:32000/mail/calendar_d.html?schedule=1&print=1&createdataCX=[xss_here]
http://www.example.com:32000/mail/calendar_m.html?schedule=1&print=1&createdataCX=[xss_here]
http://www.example.com:32000/mail/calendar_w.html?schedule=1&print=1&createdataCX=[xss_here]


 

Privacy Statement
Copyright 2010, SecurityFocus