Description
Cross-site scripting (XSS) vulnerability in the WebMail system in Stalker CommuniGate Pro 5.1.8 and earlier, when using Microsoft Internet Explorer, allows remote attackers to inject arbitrary web script or HTML via crafted STYLE tags.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Alla Bezroutchko · textwebappsphp
https://www.exploit-db.com/exploits/30027
References (9)
Core 9
Core References
Patch vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018048
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/36017
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25250
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/1795
Vendor Advisory x_refsource_misc
http://www.scanit.be/advisory-2007-05-12.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34266
Various Sources x_refsource_misc
http://www.communigate.com/CommuniGatePro/History51.html
Mailing List mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=117900749209206&w=2
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/23950
Scores
EPSS
0.2884
EPSS Percentile
96.6%
Details
Status
published
Products (2)
microsoft/internet_explorer
stalker/communigate_pro
< 5.1.8
Published
May 16, 2007
Tracked Since
Feb 18, 2026