7.5 High
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
88.9%
Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail before 1.2.3 allows remote attackers to send email as other users via an IMG URL with modified send_to and subject parameters.
nvd.nist.gov/vuln/detail/CVE-2002-1648
www.cve.org/CVERecord?id=CVE-2002-1648