Описание
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
Ссылки
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.2.7 (включая)
cpe:2.3:a:squirrelmail:squirrelmail:*:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02453
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
почти 23 года назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
debian
больше 22 лет назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier ...
github
около 3 лет назад
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
EPSS
Процентиль: 84%
0.02453
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other