Vulnerability Details CVE-2005-1308
SqWebMail allows remote attackers to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.2%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2005-1308
-
cpe:2.3:a:inter7:sqwebmail:3.4.1
-
cpe:2.3:a:inter7:sqwebmail:3.5.0
-
cpe:2.3:a:inter7:sqwebmail:3.5.1
-
cpe:2.3:a:inter7:sqwebmail:3.5.2
-
cpe:2.3:a:inter7:sqwebmail:3.5.3
-
cpe:2.3:a:inter7:sqwebmail:3.6.0
-
cpe:2.3:a:inter7:sqwebmail:3.6.1
-
cpe:2.3:a:inter7:sqwebmail:4.0.4_2004-05-24
-
cpe:2.3:a:inter7:sqwebmail:4.0.5