CVE-2002-1649

2005-03-2805:00:00

mitre

www.cve.org

AI Score

6.2

Confidence

High

EPSS

0.005

Percentile

76.6%

JSON

Cross-site scripting (XSS) vulnerability in read_body.php in SquirrelMail before 1.2.3 allows remote attackers to execute arbitrary Javascript via a javascript: URL in an IMG tag.

References

archives.neohapsis.com/archives/bugtraq/2002-01/0310.html

www.kb.cert.org/vuls/id/153043

www.securityfocus.com/bid/3956

exchange.xforce.ibmcloud.com/vulnerabilities/7989