CVE-2011-5150
Spamtitan < 5.07 - XSS
Title source: ruleDescription
Multiple cross-site scripting (XSS) vulnerabilities in SpamTitan 5.07 and possibly earlier allow remote attackers or authenticated users to inject arbitrary web script or HTML via the (1) ipaddress or (2) domain parameter to setup-network.php, different vectors than CVE-2011-5149. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Vulnerability-Lab · textwebappsphp
https://www.exploit-db.com/exploits/18261
Scores
EPSS
0.0150
EPSS Percentile
80.9%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
spamtitan/spamtitan
< 5.07
Timeline
Published
Aug 31, 2012
Tracked Since
Feb 18, 2026