CVE-2012-2593
MEDIUMAtmail Webmail Server 6.4 - Cross-Site Scripting via Email Date Field
Title source: llmExploitation Summary
EIP tracks 2 public exploits for CVE-2012-2593. PoCs published by muts, AndrewTrube.
AI-analyzed exploit summary This exploit leverages a CSRF vulnerability in Atmail Email Server 6.4 to send a malicious email containing JavaScript that triggers a remote plugin installation, leading to remote code execution. The payload includes a crafted plugin file uploaded via XMLHttpRequest.
Description
Cross-site scripting (XSS) vulnerability in the administrative interface in Atmail Webmail Server 6.4 allows remote attackers to inject arbitrary web script or HTML via the Date field of an email.
Exploits (2)
This exploit leverages a CSRF vulnerability in Atmail Email Server 6.4 to send a malicious email containing JavaScript that triggers a remote plugin installation, leading to remote code execution. The payload includes a crafted plugin file uploaded via XMLHttpRequest.
This repository contains a proof-of-concept exploit for CVE-2012-2593, which chains XSS and CSRF vulnerabilities in Atmail webmail to achieve remote code execution via a malicious plugin installation. The exploit includes a reverse shell payload and detailed instructions for execution.
References (2)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N