Description
Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote attackers to inject arbitrary web script via the expression Cascading Style Sheets (CSS) function, as demonstrated using the width style for an IMG element.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by LegendaryZion · textwebappsphp
https://www.exploit-db.com/exploits/28891
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29928
Exploit vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017146
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20840
Mailing List mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=116232831525086&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/33820
Scores
EPSS
0.0328
EPSS Percentile
87.3%
Details
Status
published
Products (1)
mirapoint/mirapoint_webmail
Published
Nov 04, 2006
Tracked Since
Feb 18, 2026