Squirrelmail: >> Squirrelmail >> 1.4.3a Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via certain integer variables.
CVSS Score
4.3
EPSS Score
0.014
Published
2005-01-29
PHP remote file inclusion vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to execute arbitrary PHP code by modifying a URL parameter to reference a URL on a remote web server that contains the code.
CVSS Score
7.5
EPSS Score
0.034
Published
2005-01-24
Page 3