CVE-2005-1653

MEDIUM

6.8

CVSS Severity Score

EPSS Score0.1020%

EPSS Percentile16.43th

PublishedMay 18, 2005

Last ModifiedApr 16, 2026

Vulnerability Description

Cross-site scripting (XSS) vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to inject arbitrary web script or HTML via the email parameter.

Affected Platforms (CPE)

📦

Woppoware

Postmaster

= 4.2.2_build3.2.5

References & Advisories

🔗 http://secunia.com/advisories/15268

🔗 http://www.securityfocus.com/bid/13597

🔗 http://secunia.com/advisories/15268

🔗 http://www.securityfocus.com/bid/13597

Related Vulnerabilities

CVE-2005-16527.5

message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to bypass authentication by modifying the email p...

CVE-2005-16517.5

Directory traversal vulnerability in message.htm for Woppoware PostMaster 4.2.2 (build 3.2.5) allows remote attackers to determine...

CVE-2021-360935.3

It's possible to create an email which can be stuck while being processed by PostMaster filters, causing DoS. This issue affects: ...

CVE-2019-181805.3

Improper Check for filenames with overly long extensions in PostMaster (sending in email) or uploading files (e.g. attaching files...