Cross-Site Scripting (XSS) Vulnerability in Alt-N MDaemon 8.1.3 WorldClient Webmail

Cross-Site Scripting (XSS) Vulnerability in Alt-N MDaemon 8.1.3 WorldClient Webmail

CVE-2005-4209 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

WorldClient webmail in Alt-N MDaemon 8.1.3 allows remote attackers to prevent arbitrary users from accessing their inboxes via script tags in the Subject header of an e-mail message, which prevents the user from being able to access the Inbox folder, possibly due to a cross-site scripting (XSS) vulnerability.

Learn more about our Web App Pen Testing.