AOH :: HP Unsorted R :: TB11004.HTM

RM EasyMail Plus - Cross-Site Scripting Vulnerability #2



RedLevel Advisory #018 - RM EasyMail Plus - Cross-Site Scripting Vulnerability #2
RedLevel Advisory #018 - RM EasyMail Plus - Cross-Site Scripting Vulnerability #2



RM EasyMail Plus - Cross-Site Scripting Vulnerability #2

This cross-site scripting vulnerability can be exploited if a client views an email with a specially crafted title.

Vulnerable E-Mail Title: 
Vulnerable: RM EasyMail Plus
Google d0rk: intitle:"Powered by RM EasyMail Plus"

John Martinelli
john@martinelli.com 

RedLevel Security
RedLevel.org

May 19th, 2007

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.