Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squirrelmail gpg plugin 2.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-3778
The G/PGP (GPG) Plugin 2.0, and 2.1dev prior to 20060912, for Squirrelmail allows remote malicious users to execute arbitrary commands via shell metacharacters in the messageSignedText parameter to the gpg_check_sign_pgp_mime function in gpg_hook_functions.php. NOTE: a parameter ...
Squirrelmail Gpg Plugin 2.1 Dev
Squirrelmail Gpg Plugin 2.0
NA
CVE-2006-4169
Multiple directory traversal vulnerabilities in the G/PGP (GPG) Plugin 2.0, and 2.1dev prior to 20070614, for Squirrelmail allow remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the help parameter to (1) gpg_help.php or (2) gpg_help_ba...
Squirrelmail Gpg Plugin 2.1 Dev
Squirrelmail Gpg Plugin 2.0
NA
CVE-2007-3779
PHP local file inclusion vulnerability in gpg_pop_init.php in the G/PGP (GPG) Plugin prior to 20070707 for Squirrelmail allows remote malicious users to include and execute arbitrary local files, related to the MOD parameter.
Squirrelmail Gpg Plugin 2.1
NA
CVE-2007-3636
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin 2.1 for Squirrelmail allow remote malicious users to execute arbitrary commands via unspecified vectors. NOTE: this information is based upon a vague pre-advisory from a reliable researcher.
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Gpg Plugin 2.0
1 EDB exploit
NA
CVE-2007-3635
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin prior to 2.1 for Squirrelmail might allow "local authenticated users" to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Squirrelmail Squirrelmail 1.4.10a
Squirrelmail Gpg Plugin 2.0
NA
CVE-2005-1924
The G/PGP (GPG) Plugin 2.1 and previous versions for Squirrelmail allow remote authenticated users to execute arbitrary commands via shell metacharacters in (1) the fpr parameter to the deleteKey function in gpg_keyring.php, as called by (a) import_key_file.php, (b) import_key_te...
Squirrelmail Gpg Plugin
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started