Unrated severityNVD Advisory· Published Sep 17, 2012· Updated Jun 16, 2026
CVE-2012-2575
CVE-2012-2575
Description
Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 6.0a4 allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IFRAME element in the body of an HTML e-mail message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- www.exploit-db.com/exploits/20363/nvdExploit
News mentions
0No linked articles in our index yet.