Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/04 12:33 a.m.25 views

CVE-2025-30090

mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true...

7.2CVSS6AI score0.0025EPSS
Exploits0References1
Circl
Circl
added 2025/04/02 1:33 p.m.17 views

CVE-2025-30090

creationtimestamp| type| source ---|---|--- 2025-04-02 13:33:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10065 2025-04-02 14:23:09+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114268817864484797 2025-04-02 14:23:09+00:00| seen|...

7.2CVSS5.7AI score0.0025EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/04/02 1:15 p.m.33 views

CVE-2025-30090

mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true...

7.2CVSS5.7AI score0.0025EPSS
Exploits0References3
OSV
OSV
added 2025/04/02 1:15 p.m.22 views

UBUNTU-CVE-2025-30090

mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true...

7.2CVSS5.7AI score0.0025EPSS
Exploits0References4
CVE
CVE
added 2025/04/02 12:0 a.m.58 views

CVE-2025-30090

CVE-2025-30090 affects SquirrelMail mime.php in versions up to 1.4.23-svn-20250401 and 1.5.x up to 1.5.2-svn-20250401, enabling cross-site scripting via email headers after $encoded is set to true. The provided documents describe the vulnerable component and the weak handling in headers, with no ...

7.2CVSS6AI score0.0025EPSS
Exploits0References2
Rows per page
Query Builder