RSS   Vulnerabilities for 'Communigate pro'   RSS

2018-10-24
 
CVE-2018-18621

CWE-79
 

 
CommuniGate Pro 6.2 allows stored XSS via a message body in Pronto! Mail Composer, which is mishandled in /MIME/INBOX-MM-1/ if the raw email link (in .txt format) is modified and then renamed with a .html or .wssp extension.

 

 >>> Vendor: Communigate 2 Products
Communigate pro
Communigate pro core server


Copyright 2024, cxsecurity.com

 

Back to Top