Unrated severityNVD Advisory· Published Oct 23, 2007· Updated Jun 16, 2026
CVE-2007-5649
CVE-2007-5649
Description
Cross-site scripting (XSS) vulnerability in lostpwd.php in Creative Digital Resources SocketMail 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the lost_id parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:socketmail:socketmail:2.2.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.