Unrated severityNVD Advisory· Published Sep 11, 2008· Updated Apr 23, 2026

CVE-2008-4045

Description

Multiple cross-site scripting (XSS) vulnerabilities in @Mail 5.42 allow remote attackers to inject arbitrary web script or HTML via the (1) file and (2) HelpFile parameters to parse.php, the (3) Folder and (4) start parameters to showmail.php, and the (5) abookview parameter to abook.php.

Affected products

Mail/Mail
cpe:2.3:a:\@mail:\@mail:5.42:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstorm.linuxsecurity.com/0808-exploits/atmail542-xss.txtnvd
secunia.com/advisories/31720nvd
secunia.com/advisories/31727nvd
exchange.xforce.ibmcloud.com/vulnerabilities/44860nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000