Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squirrelmail squirrelmail 1.2.0 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2002-0516
SquirrelMail 1.2.5 and previous versions allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.4
1 EDB exploit
890
VMScore
CVE-2004-0521
SQL injection vulnerability in SquirrelMail prior to 1.4.3 RC1 allows remote malicious users to execute unauthorized SQL statements, with unknown impact, probably via abook_database.php.
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
755
VMScore
CVE-2006-2842
PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and previous versions, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary PHP code via a URL in the plugins array parameter. NOTE...
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.4.6 Rc1
Squirrelmail Squirrelmail 1.4.3 R3
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.4.4 Rc1
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.4
1 EDB exploit
1 Github repository
685
VMScore
CVE-2004-0519
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail 1.4.2 allow remote malicious users to execute arbitrary script as other users and possibly steal authentication information via multiple attack vectors, including the mailbox parameter in compose.php.
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.9
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.7
1 EDB exploit
685
VMScore
CVE-2004-0520
Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail prior to 1.4.3 allows remote malicious users to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.
Open Webmail Open Webmail 2.30
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.5 Dev
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.32
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.2
1 EDB exploit
685
VMScore
CVE-2004-0639
Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and previous versions allow remote malicious users to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly ...
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.5 Dev
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.9
Open Webmail Open Webmail 2.31
Open Webmail Open Webmail 2.32
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3 Rc1
Open Webmail Open Webmail 2.30
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.4.1
1 EDB exploit
668
VMScore
CVE-2005-0103
PHP remote file inclusion vulnerability in webmail.php in SquirrelMail prior to 1.4.4 allows remote malicious users to execute arbitrary PHP code by modifying a URL parameter to reference a URL on a remote web server that contains the code.
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
605
VMScore
CVE-2011-2753
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.21 and previous versions allow remote malicious users to hijack the authentication of unspecified victims via vectors involving (1) the empty trash implementation and (2) the Index Order (aka options_o...
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.19
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.3.0
Squirrelmail Squirrelmail 1.0pre1
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 1.0pre3
Squirrelmail Squirrelmail 0.5pre2
Squirrelmail Squirrelmail 0.5
Squirrelmail Squirrelmail 1.4.11
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.4.2-r2
Squirrelmail Squirrelmail 1.4.2-r5
Squirrelmail Squirrelmail 1.4.2-r4
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.5
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 0.3pre2
605
VMScore
CVE-2009-2964
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.19 and previous versions, and NaSMail prior to 1.7, allow remote malicious users to hijack the authentication of unspecified victims via features such as send message and change preferences, related to...
Squirrelmail Squirrelmail 1.4.7
Squirrelmail Squirrelmail 1.4.6 Rc1
Squirrelmail Squirrelmail 1.4.4
Squirrelmail Squirrelmail 1.4.3aa
Squirrelmail Squirrelmail 1.4 Rc1
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.4.6 Cvs
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.2-r4
Squirrelmail Squirrelmail 1.4.2-r3
Squirrelmail Squirrelmail 1.4.15
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.1.2
Squirrelmail Squirrelmail 1.1.1
Squirrelmail Squirrelmail 1.0.4
605
VMScore
CVE-2009-1579
The map_yp_alias function in functions/imap_general.php in SquirrelMail prior to 1.4.18 and NaSMail prior to 1.7 allows remote malicious users to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program.
Squirrelmail Squirrelmail 1.4.0 Rc2a
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.3.0
Squirrelmail Squirrelmail 1.3.2
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 1.0.2
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 0.2
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 0.1.1
Squirrelmail Squirrelmail 1.4.16
Squirrelmail Squirrelmail 1.1.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »