Unrated severityNVD Advisory· Published Dec 3, 2012· Updated Jun 16, 2026
CVE-2012-5569
CVE-2012-5569
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal allow remote attackers to inject arbitrary web script or HTML via a (1) page title or (2) crafted email message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:basic_webmail_project:basic_webmail:6.x-1.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:basic_webmail_project:basic_webmail:6.x-1.1:*:*:*:*:*:*:*
- cpe:2.3:a:jason_flatt:basic_webmail:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:jason_flatt:basic_webmail:6.x-1.x:dev:*:*:*:*:*:*
- Range: >=6.x-1.0, <6.x-1.2
Patches
Vulnerability mechanics
References
4- drupal.org/node/1808852nvdPatchVendor Advisory
- drupal.org/node/1808616nvdPatch
- www.openwall.com/lists/oss-security/2012/11/20/4nvd
- www.openwall.com/lists/oss-security/2012/11/27/2nvd
News mentions
0No linked articles in our index yet.