Lucene search

K
cve[email protected]CVE-2002-1649
HistoryMar 28, 2005 - 5:00 a.m.

CVE-2002-1649

2005-03-2805:00:00
web.nvd.nist.gov
23
cve-2002-1649
cross-site scripting
xss
squirrelmail
security vulnerability

6.2 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.6%

Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag.

Affected configurations

NVD
Node
squirrelmailsquirrelmailMatch1.2.2

6.2 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.005 Low

EPSS

Percentile

76.6%

Related for CVE-2002-1649