Definition
New Search
SquirrelMail Cross-site Scripting Vulnerability II
oval:org.mitre.oval:def:1012
Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header as demonstrated using read_body.php.
Family:
unix
Status:
ACCEPTED
Platform(s):
- Red Hat Enterprise Linux 3
Class:
vulnerability
Reference(s):
- CVE-2004-0520
Product(s):
- SquirrelMail