CVE-2005-2901 Information

Description

Multiple Cross-site scripting (XSS) vulnerabilities in CjWeb2Mail 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name (2) message or (3) ip parameter to thankyou.php or (4) emsg parameter to web2mail.php.

Reference

http://marc.info/?l=bugtraq&m=112629507412619&w=2