CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6702

Cross-site scripting (XSS) vulnerability in Global.pm in @Mail before 4.61 allows remote attackers to inject arbitrary web script or HTML via crafted e-mail messages. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.3%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2006-6702

Atmail » Atmail Webmail » Version: Any

cpe:2.3:a:atmail:atmail_webmail:*
Atmail » Atmail Webmail » Version: 4.1

cpe:2.3:a:atmail:atmail_webmail:4.1
Atmail » Atmail Webmail » Version: 4.11

cpe:2.3:a:atmail:atmail_webmail:4.11
Atmail » Atmail Webmail » Version: 4.2

cpe:2.3:a:atmail:atmail_webmail:4.2
Atmail » Atmail Webmail » Version: 4.3

cpe:2.3:a:atmail:atmail_webmail:4.3
Atmail » Atmail Webmail » Version: 4.4

cpe:2.3:a:atmail:atmail_webmail:4.4
Atmail » Atmail Webmail » Version: 4.5

cpe:2.3:a:atmail:atmail_webmail:4.5
Atmail » Atmail Webmail » Version: 4.51

cpe:2.3:a:atmail:atmail_webmail:4.51

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-6702

Products

Pricing

Contact Us