CVE-2008-2379

Опубликовано: 03 дек. 2008

Источник: redhat

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-79

https://bugzilla.redhat.com/show_bug.cgi?id=473877squirrelmail: XSS issue caused by an insufficient html mail sanitation

EPSS

Процентиль: 78%

0.0126

Низкий

Связанные уязвимости

CVE-2008-2379

ubuntu

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

CVE-2008-2379

nvd

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

CVE-2008-2379

debian

больше 16 лет назад

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 ...

GHSA-f3qv-gjq7-3m4g

github

около 3 лет назад

Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.

ELSA-2009-0010

oracle-oval

больше 16 лет назад

ELSA-2009-0010: squirrelmail security update (MODERATE)

EPSS

Процентиль: 78%

0.0126

Низкий