Arbitrary Script Injection via Email Subject in SocketMail Pro 2.2.9

Arbitrary Script Injection via Email Subject in SocketMail Pro 2.2.9

CVE-2012-4058 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in SocketMail Pro 2.2.9 allows remote attackers to inject arbitrary web script or HTML via the subject of an email.

Learn more about our Web App Pen Testing.