CVE-2006-3174

Опубликовано: 23 июн. 2006

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 2.6

Описание

Cross-site scripting (XSS) vulnerability in search.php in SquirrelMail 1.5.1 and earlier, when register_globals is enabled, allows remote attackers to inject arbitrary HTML via the mailbox parameter.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	released	1.4.10a-2
edgy	released	1.4.8-1ubuntu0.1
feisty	released	1.4.9a-1ubuntu0.1
gutsy	released	1.4.10a-2
hardy	released	1.4.10a-2
intrepid	released	1.4.10a-2
jaunty	released	1.4.10a-2
karmic	released	1.4.10a-2
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2006-3174

EPSS

Процентиль: 77%

0.01159

Низкий

2.6 Low

CVSS2

Связанные уязвимости

CVE-2006-3174

nvd

больше 19 лет назад

Cross-site scripting (XSS) vulnerability in search.php in SquirrelMail 1.5.1 and earlier, when register_globals is enabled, allows remote attackers to inject arbitrary HTML via the mailbox parameter.

CVE-2006-3174

debian

больше 19 лет назад

Cross-site scripting (XSS) vulnerability in search.php in SquirrelMail ...

GHSA-44cp-qvgc-fw4j

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in search.php in SquirrelMail 1.5.1 and earlier, when register_globals is enabled, allows remote attackers to inject arbitrary HTML via the mailbox parameter.

EPSS

Процентиль: 77%

0.01159

Низкий

2.6 Low

CVSS2

CVE-2006-3174

Описание

Пакет squirrelmail

Ссылки на источники

Связанные уязвимости