Vulnerabilities > CVE-2002-1899 - Cross-Site Scripting vulnerability in Web Mail 3.3.3/3.3.5
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
icewarp
Summary
Cross-site scripting (XSS) vulnerability in IceWarp Web Mail 3.3.3 and 3.4.5 allows remote attackers to inject arbitrary web script or HTML via the "Full Name" (addressname) parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |