CVE-2006-5712
Mirapoint WebMail - Cross-Site Scripting via CSS Expression in IMG Width
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2006-5712. PoCs published by LegendaryZion.
AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in Mirapoint Web Mail, allowing arbitrary JavaScript execution via a crafted IMG tag with an 'expression' style attribute. The PoC triggers an alert dialog as proof of concept.
Description
Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote attackers to inject arbitrary web script via the expression Cascading Style Sheets (CSS) function, as demonstrated using the width style for an IMG element.
Exploits (1)
This exploit demonstrates an HTML injection vulnerability in Mirapoint Web Mail, allowing arbitrary JavaScript execution via a crafted IMG tag with an 'expression' style attribute. The PoC triggers an alert dialog as proof of concept.