![]()
XSS Patch for @Mail <4.61 Perl
A small XSS issue has been discovered using the search.pl script of @Mail param('keywords');To:
$var{keywords} = $atmail->param_escape('keywords');
This will catch any XSS injections from a HTML form/URL, and alert the admin of an XSS attempt.