CVE-2005-2095

2005-07-13T04:00:00
ID CVE-2005-2095
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:30:00

Description

options_identities.php in SquirrelMail 1.4.4 and earlier uses the extract function to process the $_POST variable, which allows remote attackers to modify or read the preferences of other users, conduct cross-site scripting XSS) attacks, and write arbitrary files.