Cross-site scripting (XSS) vulnerability in MHonArc before 2.5.14 allows remote attackers to inject arbitrary HTML into web archive pages via HTML mail messages.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Mhonarc | Mhonarc | 2.4.4 (including) | 2.4.4 (including) |
| Mhonarc | Mhonarc | 2.5 (including) | 2.5 (including) |
| Mhonarc | Mhonarc | 2.5.1 (including) | 2.5.1 (including) |
| Mhonarc | Mhonarc | 2.5.2 (including) | 2.5.2 (including) |
| Mhonarc | Mhonarc | 2.5.3 (including) | 2.5.3 (including) |
| Mhonarc | Mhonarc | 2.5.11 (including) | 2.5.11 (including) |
| Mhonarc | Mhonarc | 2.5.12 (including) | 2.5.12 (including) |
| Mhonarc | Mhonarc | 2.5.13 (including) | 2.5.13 (including) |
References
- http://www.debian.org/security/2002/dsa-221
- http://www.mhonarc.org/archive/cgi-bin/mesg.cgi?a=mhonarc-users\u0026i=200212220120.gBM1K8502180%40mcguire.earlhood.com
- http://www.securityfocus.com/bid/6479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10950
- http://www.debian.org/security/2002/dsa-221
- http://www.mhonarc.org/archive/cgi-bin/mesg.cgi?a=mhonarc-users\u0026i=200212220120.gBM1K8502180%40mcguire.earlhood.com
- http://www.securityfocus.com/bid/6479
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10950