Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squirrelmail squirrelmail 1.2 vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2002-0516
SquirrelMail 1.2.5 and previous versions allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.2.5
1 EDB exploit
685
VMScore
CVE-2004-0639
Multiple cross-site scripting (XSS) vulnerabilities in Squirrelmail 1.2.10 and previous versions allow remote malicious users to inject arbitrary HTML or script via (1) the $mailer variable in read_body.php, (2) the $senderNames_part variable in mailbox_display.php, and possibly ...
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.0
Sgi Propack 3.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.2.2
Open Webmail Open Webmail 2.30
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Open Webmail Open Webmail 2.31
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.5
Open Webmail Open Webmail 2.32
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.5 Dev
1 EDB exploit
605
VMScore
CVE-2011-2753
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.21 and previous versions allow remote malicious users to hijack the authentication of unspecified victims via vectors involving (1) the empty trash implementation and (2) the Index Order (aka options_o...
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.4.19
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.9a
605
VMScore
CVE-2009-2964
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.19 and previous versions, and NaSMail prior to 1.7, allow remote malicious users to hijack the authentication of unspecified victims via features such as send message and change preferences, related to...
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.4.5 Rc1
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.4.6 Rc1
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 1.4.3 R3
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 1.2.6-rc1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.9a
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.7
605
VMScore
CVE-2009-1579
The map_yp_alias function in functions/imap_general.php in SquirrelMail prior to 1.4.18 and NaSMail prior to 1.7 allows remote malicious users to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program.
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 1.4.15
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 0.5pre2
Squirrelmail Squirrelmail 1.1.1
Squirrelmail Squirrelmail 1.4.16
605
VMScore
CVE-2004-1036
Cross-site scripting (XSS) vulnerability in the decoding of encoded text in certain headers in mime.php for SquirrelMail 1.4.3a and previous versions, and 1.5.1-cvs prior to 23rd October 2004, allows remote malicious users to execute arbitrary web script or HTML.
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 1.4.3 Rc1
Squirrelmail Squirrelmail 1.2.2
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.2.1
Squirrelmail Squirrelmail 1.4.1
Squirrelmail Squirrelmail 1.2
Squirrelmail Squirrelmail 1.4
Squirrelmail Squirrelmail 1.2.4
Squirrelmail Squirrelmail 1.2.3
Squirrelmail Squirrelmail 1.4.3a
Squirrelmail Squirrelmail 1.0.4
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.2.10
Squirrelmail Squirrelmail 1.2.5
Squirrelmail Squirrelmail 1.2.8
Squirrelmail Squirrelmail 1.2.11
Squirrelmail Squirrelmail 1.5 Dev
Gentoo Linux
516
VMScore
CVE-2011-2752
CRLF injection vulnerability in SquirrelMail 1.4.21 and previous versions allows remote malicious users to modify or add preference values via a \n (newline) character, a different vulnerability than CVE-2010-4555.
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.4.19
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.9a
516
VMScore
CVE-2009-1580
Session fixation vulnerability in SquirrelMail prior to 1.4.18 allows remote malicious users to hijack web sessions via a crafted cookie.
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.9a
Squirrelmail Squirrelmail 1.4.6
Squirrelmail Squirrelmail 1.4.3
Squirrelmail Squirrelmail 1.4.7
Squirrelmail Squirrelmail 1.2.9
Squirrelmail Squirrelmail 0.1
Squirrelmail Squirrelmail 1.4.15
383
VMScore
CVE-2012-0323
Cross-site scripting (XSS) vulnerability in the Autocomplete plugin prior to 3.0 for SquirrelMail allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Paul Lesniewsk Autocomplete
Paul Lesniewsk Autocomplete 1.0
Paul Lesniewsk Autocomplete 1.1
Paul Lesniewsk Autocomplete 1.2
Paul Lesniewsk Autocomplete 1.3
Paul Lesniewsk Autocomplete 2.0
383
VMScore
CVE-2011-2023
Cross-site scripting (XSS) vulnerability in functions/mime.php in SquirrelMail prior to 1.4.22 allows remote malicious users to inject arbitrary web script or HTML via a crafted STYLE element in an e-mail message.
Squirrelmail Squirrelmail 1.3.1
Squirrelmail Squirrelmail 1.4.2
Squirrelmail Squirrelmail 0.4
Squirrelmail Squirrelmail 1.0.6
Squirrelmail Squirrelmail 1.0.5
Squirrelmail Squirrelmail 0.3
Squirrelmail Squirrelmail 0.4pre2
Squirrelmail Squirrelmail 1.4.17
Squirrelmail Squirrelmail 1.2.0
Squirrelmail Squirrelmail 1.1.0
Squirrelmail Squirrelmail 1.0pre2
Squirrelmail Squirrelmail 0.3.1
Squirrelmail Squirrelmail 1.4.19
Squirrelmail Squirrelmail 1.4.0-r1
Squirrelmail Squirrelmail 0.1.2
Squirrelmail Squirrelmail 1.2.7
Squirrelmail Squirrelmail 1.2.6
Squirrelmail Squirrelmail 1.4.13
Squirrelmail Squirrelmail 1.0.1
Squirrelmail Squirrelmail 0.2.1
Squirrelmail Squirrelmail 1.4.12
Squirrelmail Squirrelmail 1.4.9a
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »