logo
DATABASE RESOURCES PRICING ABOUT US

Cross-site Scripting (XSS)

Description

squirrelmail is vulnerable to cross-site scripting (XSS). The vulnerability exists as a remote attacker could use this flaw to send a specially-crafted Multipurpose Internet Mail Extensions (MIME) message that, when opened by a victim, would lead to arbitrary web script execution in the context of their SquirrelMail session.


Affected Software


CPE Name Name Version
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5

Related