CVE-2007-2825
https://notcve.org/view.php?id=CVE-2007-2825
Multiple cross-site scripting (XSS) vulnerabilities in ReadMsg.php in @Mail 5.02 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving (1) links and (2) images. Múltiples vulnerabilidades de secuencias de comandos en sitios cruzados (XSS) en ReadMsg.php de @Mail 5.02 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través de vectores no especificados implicando (1) enlaces e (2) imágenes. • http://osvdb.org/36826 http://secunia.com/advisories/25506 http://terra.calacode.com/mail/docs/changelog.html http://www.securityfocus.com/bid/24260 https://exchange.xforce.ibmcloud.com/vulnerabilities/34376 •
CVE-2007-2153
https://notcve.org/view.php?id=CVE-2007-2153
Cross-site scripting (XSS) vulnerability in atmail.php in @Mail 5.0 allows remote attackers to inject arbitrary web script or HTML via the username parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en atmail.php in @Mail 5.0 permite a atacantes remotos inyectar scripts web o HTML de su elección a través del parámetro username. • http://securityreason.com/securityalert/2594 http://www.majorsecurity.de/index_2.php?major_rls=major_rls43 http://www.securityfocus.com/archive/1/465378/100/100/threaded http://www.securityfocus.com/bid/23428 https://exchange.xforce.ibmcloud.com/vulnerabilities/33591 •
CVE-2007-0953
https://notcve.org/view.php?id=CVE-2007-0953
Cross-site scripting (XSS) vulnerability in search.pl in @Mail 4.61 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter. Vulnerabilidad de secuencia de comandos en sitios cruzados (XSS) en search.pl en @Mail 4.61 y anteriores permite a un atacante remoto inyectar secuencias de comandos web o HTML a través del parámetro keywords. • http://kb.atmail.com/?p=410 http://lostmon.blogspot.com/2007/02/mail-searchpl-keywords-variable-cross.html http://osvdb.org/33193 http://secunia.com/advisories/24155 http://www.securityfocus.com/bid/22552 http://www.vupen.com/english/advisories/2007/0603 https://exchange.xforce.ibmcloud.com/vulnerabilities/32483 •