Vulnerabilities > Inter7 > Sqwebmail > 5.0.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-09-07 | CVE-2005-2820 | Unspecified vulnerability in Inter7 Sqwebmail 5.0.4 Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows remote attackers to inject arbitrary web script or HTML via an e-mail message containing Internet Explorer "Conditional Comments" such as "[if]" and "[endif]". network inter7 | 4.3 |
2005-09-02 | CVE-2005-2769 | Unspecified vulnerability in Inter7 Sqwebmail 5.0.4 Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 and possibly other versions allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail containing tags with strings that contain ">" or other special characters, which is not properly sanitized by SqWebMail. network inter7 | 4.3 |
2005-08-30 | CVE-2005-2724 | Unspecified vulnerability in Inter7 Sqwebmail Cross-site scripting (XSS) vulnerability in SqWebMail 5.0.4 allows remote attackers to inject arbitrary web script or HTML via a file attachment that is processed by the Display feature. network inter7 | 4.3 |