CVE

Id
79626  
CVE No.
CVE-2015-2349  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in defaultnewsletter.php in SuperWebMailer 5.60.0.01190 and earlier allows remote attackers to inject arbitrary web script or HTML via the HTMLForm parameter.  
Phase
Assigned (20150319)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
722778 79626 CVE-2015-2349 FULLDISC:20150310 SuperWebMailer 5.50.0.01160 XSS (Cross-site Scripting) Security Vulnerabilities  View
722779 79626 CVE-2015-2349 URL:http://seclists.org/fulldisclosure/2015/Mar/55  View
722780 79626 CVE-2015-2349 MISC:http://packetstormsecurity.com/files/130751/SuperWebMailer-5.50.0.01160-Cross-Site-Scripting.html  View
722781 79626 CVE-2015-2349 MISC:http://tetraph.com/security/xss-vulnerability/superwebmailer-5-50-0-01160-xss-cross-site-scripting-security-vulnerabilities/  View
722782 79626 CVE-2015-2349 BID:73063  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
8282 JVNDB-2015-003602 Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性 Microsoft Internet Explorer 9 から 11 には、任意のコードを実行される、またはサービス運用妨害 (メモリ破損) 状態にされる脆弱性が存在します。 CVE-2015-2401 79626 9.3 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-003602.html  View