4 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14951
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via a form action='data:text attack. CVE-2018-14951 Note that Nessus relies on the presence...
Fedora Update for squirrelmail FEDORA-2019-ad02f64a79
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2018-14951
The mail message display page in SquirrelMail through 1.4.22 has XSS via a "form action='data:text" attack...
CVE-2018-14951
CVE-2018-14951 affects SquirrelMail up to version 1.4.22, where a stored XSS is possible in the mail display page via a crafted form action using a data:text payload. Public disclosures and Debian security advisory confirm the issue and list affected packages; Debian fixes indicate upgrade to squ...