CVE-2008-7202

Multiple cross-site scripting (XSS) vulnerabilities in OpenWebMail before 2.53 (Stable) allow remote attackers to inject arbitrary web script or HTML via unknown vectors.

Date published : 2009-09-10

http://freshmeat.net/projects/openwebmail/releases/270453

http://archives.neohapsis.com/archives/apps/freshmeat/2008-01/0032.html