5 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-14954
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute. CVE-2018-14954 Note that Nessus relies on the presence of the...
Fedora Update for squirrelmail FEDORA-2019-ad02f64a79
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2018-14954
The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute...
CVE-2018-14954
The CVE-2018-14954 issue concerns SquirrelMail up to version 1.4.22, where Cross‑Site Scripting (XSS) is possible via the formaction attribute on the mail message display page. Public disclosures in Debian indicate this is among several XSS flaws affecting SquirrelMail and note a fix in Debian 8:...
CVE-2018-14954
The mail message display page in SquirrelMail through 1.4.22 has XSS via the formaction attribute...