Roundcube Community Forum

Recycle Bin => Recycle Bin => Topic started by: dr.pantagon on February 28, 2008, 01:56:40 PM

Title: XSS bug on error.php
Post by: dr.pantagon on February 28, 2008, 01:56:40 PM
Hi
I'm Reza yavari From iran
I'm Install rc_signup_and_admin_2_1_beta_1 and Find Xss Bug
Please Help Me For Path
http://roundcubeforum.net/forum/index.php?action=dlattach;topic=232.0;attach=156
Bug Model : XSS
Risk : LOW
Page : error.php

http://mail.irangmail.com/error.php?ermsg=Invalid%20alternate%20email%20address.

http://mail.irangmail.com/error.php?ermsg=HACKED AND OHTER MESSAGE LOAD ON THIS PAGE