Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:23052
HistoryApr 10, 2020 - 12:14 a.m.

Cross-Site Request Forgery (CSRF)

2020-04-1000:14:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON

squirrelmail is vulnerable to cross-site request forgery. Squirrelmail did not sufficiently check arguments to IMG tags in HTML e-mail messages. This could be exploited by an attacker by sending arbitrary e-mail messages on behalf of a squirrelmail user tricked into opening a maliciously crafted HTML e-mail message.

Related

cve 2
prion 2
ubuntucve 2
nessus 7
oraclelinux 1
redhat 1
centos 1
openvas 2
seebug 1
cve
cve
CVE-2007-2589
2007-05-11 04:20:00
CVE-2007-2631
2007-05-13 23:19:00
prion
prion
Cross site request forgery (csrf)
2007-05-11 04:20:00
Cross site request forgery (csrf)
2007-05-13 23:19:00
ubuntucve
ubuntucve
CVE-2007-2589
2007-05-11 00:00:00
CVE-2007-2631
2007-05-13 00:00:00
nessus
nessus
openSUSE 10 Security Update : squirrelmail (squirrelmail-3944)
2007-10-17 00:00:00
RHEL 3 / 4 / 5 : squirrelmail (RHSA-2007:0358)
2007-05-20 00:00:00
Scientific Linux Security Update : squirrelmail on SL5.x, SL4.x, SL3.x i386/x86_64
2012-08-01 00:00:00
oraclelinux
oraclelinux
Moderate: squirrelmail security update
2007-05-17 00:00:00
redhat
redhat
(RHSA-2007:0358) Moderate: squirrelmail security update
2007-05-17 00:00:00
centos
centos
squirrelmail security update
2007-05-17 18:22:57
openvas
openvas
Oracle: Security Advisory (ELSA-2007-0358)
2015-10-08 00:00:00
Debian: Security Advisory (DSA-1290-1)
2008-01-17 00:00:00
seebug
seebug
Mac OS X 2007-007更新修复多个安全漏洞
2007-08-02 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

JSON
Related for VERACODE:23052
cve2prion2ubuntucve2nessus7oraclelinux1redhat1centos1openvas2seebug1