Vulnerabilities > CVE-2007-2915 - Cross-Site Scripting vulnerability in Rm Easymail Plus

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

rm-easymail

NVD

Published: 2007-05-30

Updated: 2018-10-16

Summary

Cross-site scripting (XSS) vulnerability in RM EasyMail Plus allows remote attackers to inject arbitrary web script or HTML via the title field in an email.

Vulnerable Configurations

Part	Description	Count
Application	Rm_Easymail RM Easymail RM Easymail Plus *	1

References

http://osvdb.org/36255
http://securityreason.com/securityalert/2746
http://www.securityfocus.com/archive/1/469216/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/34449