CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-3635

Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2.1 for Squirrelmail might allow "local authenticated users" to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 15.0%

CVSS Severity

CVSS v2 Score 4.3

References

http://osvdb.org/45789
http://www.attrition.org/pipermail/vim/2007-July/001703.html
http://www.squirrelmail.org/plugin_view.php?id=153
http://osvdb.org/45789
http://www.attrition.org/pipermail/vim/2007-July/001703.html
http://www.squirrelmail.org/plugin_view.php?id=153

Products affected by CVE-2007-3635

Squirrelmail » Gpg Plugin » Version: 2.0

cpe:2.3:a:squirrelmail:gpg_plugin:2.0
Squirrelmail » Squirrelmail » Version: 1.4.10a

cpe:2.3:a:squirrelmail:squirrelmail:1.4.10a

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-3635

Products

Pricing

Contact Us