Donations
News
About
Support
Security
Screen shots
Download
Plugins
Documentation
Sponsors
Bounties
Junk Email Filter
|
Security
XSS vulnerability in webmail.php
- Date:
- 2005-01-20
- Description:
- Insufficient escaping of integer variables in webmail.php allowed for a remote attacker to include HTML/script-code into a SquirrelMail webpage.
- Affected Versions:
- <= 1.4.4-RC1
- Register Globals:
- Register_globals does not have to be on for this issue.
- CVE ID(s):
- CVE-2005-0104
- Patch:
- view patch
- Credits:
- This page last updated:
- 2007-07-03 12:59:57
|
