CVE-2004-0520

2004-08-18T00:00:00
ID CVE-2004-0520
Type cve
Reporter NVD
Modified 2017-10-10T21:29:27

Description

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.