Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-06-03T04:00:00

Updated: 2024-08-08T00:17:15.176Z

Reserved: 2004-06-02T00:00:00

Link: CVE-2004-0519

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2004-08-18T04:00:00.000

Modified: 2024-11-20T23:48:46.290

Link: CVE-2004-0519

cve-icon Redhat

Severity : Moderate

Publid Date: 2004-04-29T00:00:00Z

Links: CVE-2004-0519 - Bugzilla