CVE-2004-2494

Publication date

2005-10-25 04:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in _error in Ability Mail Server 1.18 allows remote attackers to inject arbitrary web script or HTML via the erromsg parameter.