CVE-2011-2023

2011-07-14T23:55:00
ID CVE-2011-2023
Type cve
Reporter cve@mitre.org
Modified 2012-02-14T04:06:00

Description

Cross-site scripting (XSS) vulnerability in functions/mime.php in SquirrelMail before 1.4.22 allows remote attackers to inject arbitrary web script or HTML via a crafted STYLE element in an e-mail message.