Количество 11
Количество 11
ELSA-2009-0010
ELSA-2009-0010: squirrelmail security update (MODERATE)
CVE-2008-3663
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
CVE-2008-3663
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
CVE-2008-3663
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
CVE-2008-3663
Squirrelmail 1.4.15 does not set the secure flag for the session cooki ...
CVE-2008-2379
Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.
CVE-2008-2379
Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.
CVE-2008-2379
Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.
CVE-2008-2379
Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 ...
GHSA-v6vw-6gwh-pprh
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
GHSA-f3qv-gjq7-3m4g
Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2009-0010 ELSA-2009-0010: squirrelmail security update (MODERATE) | больше 16 лет назад | ||
 | CVE-2008-3663 Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie. | CVSS2: 5 | 1% Низкий | больше 16 лет назад |
 | CVE-2008-3663 Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie. | 1% Низкий | почти 17 лет назад | |
 | CVE-2008-3663 Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie. | CVSS2: 5 | 1% Низкий | больше 16 лет назад |
| CVE-2008-3663 Squirrelmail 1.4.15 does not set the secure flag for the session cooki ... | CVSS2: 5 | 1% Низкий | больше 16 лет назад |
| CVE-2008-2379 Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message. | CVSS2: 4.3 | 1% Низкий | больше 16 лет назад |
| CVE-2008-2379 Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message. | 1% Низкий | больше 16 лет назад | |
| CVE-2008-2379 Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message. | CVSS2: 4.3 | 1% Низкий | больше 16 лет назад |
| CVE-2008-2379 Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 ... | CVSS2: 4.3 | 1% Низкий | больше 16 лет назад |
| GHSA-v6vw-6gwh-pprh Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie. | 1% Низкий | около 3 лет назад | |
| GHSA-f3qv-gjq7-3m4g Cross-site scripting (XSS) vulnerability in SquirrelMail before 1.4.17 allows remote attackers to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message. | 1% Низкий | около 3 лет назад |
Уязвимостей на страницу