Vulnerabilities > CVE-2006-5712 - HTML Injection vulnerability in Mirapoint Web Mail Expression()
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote attackers to inject arbitrary web script via the expression Cascading Style Sheets (CSS) function, as demonstrated using the width style for an IMG element.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Mirapoint Web Mail Expression() HTML Injection Vulnerability. CVE-2006-5712. Webapps exploit for php platform |
id | EDB-ID:28891 |
last seen | 2016-02-03 |
modified | 2006-10-31 |
published | 2006-10-31 |
reporter | LegendaryZion |
source | https://www.exploit-db.com/download/28891/ |
title | Mirapoint Web Mail Expression HTML Injection Vulnerability |