Unrated severityNVD Advisory· Published Dec 23, 2006· Updated Jun 16, 2026
CVE-2006-6702
CVE-2006-6702
Description
Cross-site scripting (XSS) vulnerability in Global.pm in @Mail before 4.61 allows remote attackers to inject arbitrary web script or HTML via crafted e-mail messages. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Affected products
9cpe:2.3:a:atmail:atmail_webmail:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:atmail:atmail_webmail:*:*:*:*:*:*:*:*range: <=4.6
- cpe:2.3:a:atmail:atmail_webmail:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.11:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.3:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.4:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:atmail:atmail_webmail:4.51:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.