First published: Sun Aug 05 2018(Updated: )
The mail message display page in SquirrelMail through 1.4.22 has XSS via a "<form action='data:text" attack.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Squirrelmail Squirrelmail | <=1.4.22 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.