Vulnerabilities > Socketmail > Socketmail > 2.2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-23 | CVE-2007-5649 | Cross-Site Scripting vulnerability in Socketmail 2.2.1 Cross-site scripting (XSS) vulnerability in lostpwd.php in Creative Digital Resources SocketMail 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the lost_id parameter. | 4.3 |