CVE-2008-5734 Information

Description

Cross-site scripting (XSS) vulnerability in WebMail Pro in IceWarp Software Merak Mail Server 9.3.2 allows remote attackers to inject arbitrary web script or HTML via an IMG element in an HTML e-mail message.

Reference

http://blog.vijatov.com/index.php?itemid=11 http://osvdb.org/50885 http://secunia.com/advisories/32770 http://www.securityfocus.com/bid/32969 https://exchange.xforce.ibmcloud.com/vulnerabilities/47533