Описание
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
Ссылки
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.7 (включая)
cpe:2.3:a:squirrelmail:squirrelmail:*:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.03877
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
около 23 лет назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
debian
около 23 лет назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier ...
github
больше 3 лет назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
EPSS
Процентиль: 88%
0.03877
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other