CVE-2015-5379
Description
Cross-site scripting (XSS) vulnerability in actions.hsp in the Ajax WebMail interface in AXIGEN Mail Server before 9.0 allows remote attackers to inject arbitrary web script or HTML via an email attachment.
Risk Information
Base Score
5.4
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.254
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2012-2592,CVE-2015-5379 are affected in Axigen Mail Server 8.0.1 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.0 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.0.2 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.0.3 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.1.0 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.1.1 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.1.2 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.1.3 | Windows |
| Vulnerabilities CVE-2015-5379 are affected in Axigen Mail Server 8.2.0 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234