3 matches found
CVE-2003-0990
creationtimestamp| type| source ---|---|--- 2010-08-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16888 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/squirrelmailpgpplugin.rb 2025-02-06 03:13:37+00:00|...
CVE-2003-0990
The parseAddress code in 1 SquirrelMail 1.4.0 and 2 GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field...
CVE-2003-0990
The CVE-2003-0990 issue affects SquirrelMail 1.4.0 and the GPG Plugin 1.1, where the parseAddress code can be abused to execute shell commands via metacharacters in the To: field. This is a remote command-execution vulnerability exploitable via SMTP delivery (e.g., via crafted email contents) and...