Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squirrelmail squirrelmail 1.4.10a vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2007-3635
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin prior to 2.1 for Squirrelmail might allow "local authenticated users" to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Gpg Plugin 2.0
755
VMScore
CVE-2007-3636
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin 2.1 for Squirrelmail allow remote malicious users to execute arbitrary commands via unspecified vectors. NOTE: this information is based upon a vague pre-advisory from a reliable researcher.
Squirrelmail Gpg Plugin 2.0
Squirrelmail Squirrelmail 1.4.10a
1 EDB exploit
445
VMScore
CVE-2010-2813
functions/imap_general.php in SquirrelMail prior to 1.4.21 does not properly handle 8-bit characters in passwords, which allows remote malicious users to cause a denial of service (disk consumption) by making many IMAP login attempts with different usernames, leading to the creat...
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.16
Squirrelmail Squirrelmail 1.4.0 Rc1
Squirrelmail Squirrelmail 1.4.11
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 1.4.15
Squirrelmail Squirrelmail 1.4.9a
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.5
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.4.18
Squirrelmail Squirrelmail 1.4.5 Rc1
Squirrelmail Squirrelmail 1.4.15 Rc1
Squirrelmail Squirrelmail 1.4.2-r3
Squirrelmail Squirrelmail 1.4.2-r2
Squirrelmail Squirrelmail 1.4.8
Squirrelmail Squirrelmail 1.4.7
Squirrelmail Squirrelmail 1.4.3aa
383
VMScore
CVE-2009-1578
Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail prior to 1.4.18 and NaSMail prior to 1.7 allow remote malicious users to inject arbitrary web script or HTML via vectors involving (1) certain encrypted strings in e-mail headers, related to contrib/decrypt_heade...
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.1.2
Squirrelmail Squirrelmail 1.1.3
Squirrelmail Squirrelmail 1.0
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 0.4pre1
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 0.3pre1
Squirrelmail Squirrelmail
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.11
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.4.0 Rc1
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.10
605
VMScore
CVE-2009-1579
The map_yp_alias function in functions/imap_general.php in SquirrelMail prior to 1.4.18 and NaSMail prior to 1.7 allows remote malicious users to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program.
Squirrelmail Squirrelmail 1.4.0 Rc2a
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.3.0
Squirrelmail Squirrelmail 1.3.2
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 1.0.2
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 0.2
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 0.1.1
Squirrelmail Squirrelmail 1.4.16
Squirrelmail Squirrelmail 1.1.3
383
VMScore
CVE-2009-1581
functions/mime.php in SquirrelMail prior to 1.4.18 does not protect the application's content from Cascading Style Sheets (CSS) positioning in HTML e-mail messages, which allows remote malicious users to spoof the user interface, and conduct cross-site scripting (XSS) and ph...
Squirrelmail Squirrelmail 1.4.15 Rc1
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.3.2
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.0 Rc3
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.0.2
Squirrelmail Squirrelmail 1.0.3
Squirrelmail Squirrelmail 0.2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.4.16
Squirrelmail Squirrelmail
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.4.0 Rc1
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.3
383
VMScore
CVE-2008-2379
Cross-site scripting (XSS) vulnerability in SquirrelMail prior to 1.4.17 allows remote malicious users to inject arbitrary web script or HTML via a crafted hyperlink in an HTML part of an e-mail message.
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.5
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.10
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.1.1
Squirrelmail Squirrelmail 1.1.2
Squirrelmail Squirrelmail 1.0.2
Squirrelmail Squirrelmail 1.0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 0.1.1
Squirrelmail Squirrelmail
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.4.5 Rc1
516
VMScore
CVE-2009-1580
Session fixation vulnerability in SquirrelMail prior to 1.4.18 allows remote malicious users to hijack web sessions via a crafted cookie.
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.0pre3
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3pre2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 0.5
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.11
383
VMScore
CVE-2011-2023
Cross-site scripting (XSS) vulnerability in functions/mime.php in SquirrelMail prior to 1.4.22 allows remote malicious users to inject arbitrary web script or HTML via a crafted STYLE element in an e-mail message.
Squirrelmail Squirrelmail 0.2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.4.15
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.18
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 1.0.2
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 0.1.1
Squirrelmail Squirrelmail 1.4.19
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.3pre2
516
VMScore
CVE-2011-2752
CRLF injection vulnerability in SquirrelMail 1.4.21 and previous versions allows remote malicious users to modify or add preference values via a \n (newline) character, a different vulnerability than CVE-2010-4555.
Squirrelmail Squirrelmail 0.3pre2
Squirrelmail Squirrelmail 0.3pre1
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.0
Squirrelmail Squirrelmail 1.4.4
Squirrelmail Squirrelmail 1.4.16
Squirrelmail Squirrelmail 1.1.2
Squirrelmail Squirrelmail 1.1.3
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 0.5pre1
Squirrelmail Squirrelmail 1.4.20
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.2-r1
Squirrelmail Squirrelmail 1.4.2-r3
Squirrelmail Squirrelmail 1.4.7
Squirrelmail Squirrelmail 1.4.6 Cvs
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.4.15
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »