Vulnerabilities > Socketmail > Socketmail > 2.2.1

DATE CVE VULNERABILITY TITLE RISK
2007-10-23 CVE-2007-5649 Cross-Site Scripting vulnerability in Socketmail 2.2.1
Cross-site scripting (XSS) vulnerability in lostpwd.php in Creative Digital Resources SocketMail 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the lost_id parameter.
network
socketmail CWE-79
4.3
4.3