5.5 Medium
AI Score
Confidence
High
0.016 Low
EPSS
Percentile
87.4%
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.0 through 1.4.4 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors in (1) the URL or (2) an e-mail message.