MHonArc m2h_text_html Filter Cross Site Scripting Vulnerability

info
discussion
exploit
solution
references

MHonArc m2h_text_html Filter Cross Site Scripting Vulnerability

A cross site scripting vulnerability has been reported for MHonArc.

A specially crafted HTML mail messages may be able to bypass existing HTML filtering techniques imposed by MHonArc. Any MHonArc archives that allow HTML content are vulnerable to this issue.

This vulnerability has been reported to affect all versions of MHonArc 2.5.13 and earlier.