Multiple cross-site scripting (XSS) vulnerabilities in IlohaMail 0.8.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the e-mail (1) body, (2) filename, or (3) MIME type.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ilohamail | Ilohamail | 0.7.0 | 0.7.0 |
| Ilohamail | Ilohamail | 0.7.1 | 0.7.1 |
| Ilohamail | Ilohamail | 0.7.2 | 0.7.2 |
| Ilohamail | Ilohamail | 0.7.3 | 0.7.3 |
| Ilohamail | Ilohamail | 0.7.4 | 0.7.4 |
| Ilohamail | Ilohamail | 0.7.4.2 | 0.7.4.2 |
| Ilohamail | Ilohamail | 0.7.5 | 0.7.5 |
| Ilohamail | Ilohamail | 0.7.6 | 0.7.6 |
| Ilohamail | Ilohamail | 0.7.7 | 0.7.7 |
| Ilohamail | Ilohamail | 0.7.8 | 0.7.8 |
| Ilohamail | Ilohamail | 0.7.9 | 0.7.9 |
| Ilohamail | Ilohamail | 0.8.6 | 0.8.6 |
| Ilohamail | Ilohamail | 0.8.7 | 0.8.7 |
| Ilohamail | Ilohamail | 0.8.8 | 0.8.8 |
| Ilohamail | Ilohamail | 0.8.9 | 0.8.9 |
| Ilohamail | Ilohamail | 0.8.10 | 0.8.10 |
| Ilohamail | Ilohamail | 0.8.11 | 0.8.11 |
| Ilohamail | Ilohamail | 0.8.12 | 0.8.12 |
| Ilohamail | Ilohamail | 0.8.13 | 0.8.13 |
| Ilohamail | Ilohamail | 0.8.14_rc1 | 0.8.14_rc1 |
| Ilohamail | Ilohamail | 0.8.14_rc2 | 0.8.14_rc2 |
| Ilohamail | Ubuntu | dapper | * |
| Ilohamail | Ubuntu | devel | * |
| Ilohamail | Ubuntu | edgy | * |
| Ilohamail | Ubuntu | feisty | * |