CVE-2010-5338

Publication date

2019-10-11 10:35:42

Family

mitre

State

PUBLISHED

Description

IceWarp Webclient before 10.2.1 has XSS via an HTTP POST request: webmail/basic/ with the parameter _dlg[captcha][action] is non-persistent in 10.1.3 and 10.2.0.