CVE-2015-4657 Information

Description

Cross-site scripting (XSS) vulnerability in Mailbird 2.0.16.0 and earlier allows remote attackers to inject arbitrary web script or HTML via an e-mail message body with a crafted URL.

Reference

http://seclists.org/fulldisclosure/2015/May/42 http://seclists.org/fulldisclosure/2015/May/98 http://www.securityfocus.com/bid/74815