Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: CGI abuses : XSS --> Category: attack

SqWebMail HTTP Response Splitting Vulnerability Vulnerability Scan

Vulnerability Scan Summary
Checks for HTTP response splitting vulnerability in SqWebMail

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote web server contains a CGI script that is affected by a
cross-site scripting flaw.

Description :

The remote host is running a version of SqWebMail that does not
properly sanitize user-supplied input through the 'redirect'
parameter. A possible hacker can exploit this flaw to inject arbitrary HTML
and script code into a user's browser to be executed within the
context of the affected web site. Such attacks could lead to session
cookie and password theft for users who read mail with SqWebMail.

See also :

Solution :

Unknown at this time.

Risk factor:

Low / CVSS Base Score : 2

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.