Full title: Opolis.eu Secure Mail Blind SQL Injection / XSS / CSRF / DoS 
Category: web applications
Platform: php
Opolis.eu suffers from cross site request forgery, cross site scripting, denial of service, and remote blind SQL injection vulnerabilities. The vendor has not responded to the researchers reports of these issues.

# 0day.today @ http://0day.today/