NuytsTech Security

CVE-2001-0857

by ·

Cross-site scripting vulnerability in status.php3 in Imp Webmail 2.2.6 and earlier allows remote attackers to gain access to the e-mail of other users by hijacking session cookies via the message parameter.

Date published : 2002-03-09

http://www.securityfocus.com/bid/3525

http://marc.info/?l=bugtraq&m=100535679608486&w=2

Tags: