Squirrelmail: >> Gpg Plugin >> 1.1 Security Vulnerabilities
The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.
CVSS Score
7.5
EPSS Score
0.78
Published
2004-01-20