7 matches found
EUVD-2018-6837
Malware in sbrugna...
SquirrelMail <= 1.4.23, 1.5.x <= 1.5.2 XSS Vulnerability
SquirrelMail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2025-30090
CVE-2025-30090 affects SquirrelMail mime.php in versions up to 1.4.23-svn-20250401 and 1.5.x up to 1.5.2-svn-20250401, enabling cross-site scripting via email headers after $encoded is set to true. The provided documents describe the vulnerable component and the weak handling in headers, with no ...
Linux Distros Unpatched Vulnerability : CVE-2018-14953
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via a math xlink:href= attack. CVE-2018-14953 Note that Nessus relies on the presence of th...
Linux Distros Unpatched Vulnerability : CVE-2018-14952
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mail message display page in SquirrelMail through 1.4.22 has XSS via a maction xlink:href= attack. CVE-2018-14952 Note that Nessus relies on the presence of...
FreeBSD : squirrelmail -- XSS (185)
The following package needs to be updated: ja-squirrelmail %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg7fbfe159343811d9a9e70001020eed82.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyrig...
SquirrelMail v1.2.9 XSS bugs
=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::=:=:=::= topic: SquirrelMail v1.2.9 XSS bugs product: SquirrelMail v1.2.9 vendor: www.squirrelmail.org risk: low date: 12/3/2k2 discovered by: euronymous /F0KP /HACKRU Team advisory url: http://f0kp.iplus.ru/bz/008.txt...