CVE-2005-3131 Information
Feb 14, 2021
cve
Description
Multiple cross-site scripting (XSS) vulnerabilities in MERAK Mail Server 8.2.4r with Icewarp Web Mail 5.5.1 and possibly earlier versions allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to blank.html or the createdataCX parameter to (2) calendar_d.html (3) calendar_m.html or (4) calendar_w.html.
Reference
http://marc.info/?l=bugtraq&m=112810385104168&w=2 http://secunia.com/advisories/17046/ http://www.securityfocus.com/bid/14980 http://www.vupen.com/english/advisories/2005/1933
Share on: