Description
Multiple cross-site scripting (XSS) vulnerabilities in the delegated spam management feature in the Spam Quarantine Management (SQM) component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via (1) the list of blocked senders or (2) the list of safe senders.
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
cve@mitre.org
http://secunia.com/advisories/32062cve@mitre.org
http://www.dcsl.ul.ie/marshal.htmcve@mitre.org
http://www.marshal.com/kb/article.aspx?id=12175cve@mitre.org
http://www.securityfocus.com/bid/31483af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/32062af854a3a-2127-422b-91ae-364da2661108
http://www.dcsl.ul.ie/marshal.htmaf854a3a-2127-422b-91ae-364da2661108
http://www.marshal.com/kb/article.aspx?id=12175af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/31483af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/45509af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/45511