Filters

Software

squirrelmail squirrelmail
67
squirrelmail gpg plugin
8
squirrelmail vacation plugin
2
squirrelmail address add plugin
1
squirrelmail change passwd
1
squirrelmail imap general.php
1
squirrelmail s mime plugin
1
squirrelmail squirrelmail1.4.19-1
1

Squirrelmail Squirrelmailcompose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates fro…

critical
9.8
First published (updated )
CVE-2020-14932

Squirrelmail Squirrelmailcompose.php in SquirrelMail 1.4.22 calls unserialize for the $attachments value, which originates fr…

high
8.8
First published (updated )
CVE-2020-14933

Squirrelmail Change PasswdSquirrelmail 4.0 uses the outdated MD5 hash algorithm for passwords.

high
7.5
First published (updated )
CVE-2012-5623

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2019-12970

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14952

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14951

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14950

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14953

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14954

Squirrelmail SquirrelmailXSS

medium
6.1
First published (updated )
CVE-2018-14955

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Debian Debian LinuxPath Traversal

high
8.8
First published (updated )
CVE-2018-8741

Squirrelmail SquirrelmailInput Validation

critical
9
First published (updated )
CVE-2017-7692

Redhat Enterprise Linuxfunctions/imap_general.php in SquirrelMail, as used in Red Hat Enterprise Linux (RHEL) 4 and 5, does…

medium
5
First published (updated )
CVE-2012-2124

Paul Lesniewsk AutocompleteXSS

medium
4.3
First published (updated )
CVE-2012-0323

Squirrelmail SquirrelmailCSRF

medium
6.8
First published (updated )
CVE-2011-2753

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailCode Injection, CRLF Injection

medium
5.8
First published (updated )
CVE-2011-2752

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2011-2023

Squirrelmail SquirrelmailXSS, CSRF

medium
4.3
First published (updated )
CVE-2010-4555

Squirrelmail SquirrelmailInput Validation

medium
4.3
First published (updated )
CVE-2010-4554

Squirrelmail Squirrelmailfunctions/imap_general.php in SquirrelMail before 1.4.21 does not properly handle 8-bit characters i…

medium
5
First published (updated )
CVE-2010-2813

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailSSRF

medium
6.5
First published (updated )
CVE-2010-1637

Squirrelmail SquirrelmailCSRF

medium
6.8
First published (updated )
CVE-2009-2964

Squirrelmail SquirrelmailOS Command Injection

medium
6.8
First published (updated )
CVE-2009-1381

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2009-1578

Squirrelmail SquirrelmailSession fixation vulnerability in SquirrelMail before 1.4.18 allows remote attackers to hijack web s…

medium
5.8
First published (updated )
CVE-2009-1580

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2009-1581

Squirrelmail SquirrelmailCode Injection, OS Command Injection

medium
6.8
First published (updated )
CVE-2009-1579

Squirrelmail SquirrelmailA certain Red Hat patch for SquirrelMail 1.4.8 sets the same SQMSESSID cookie value for all sessions…

medium
6.5
First published (updated )
CVE-2009-0030

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2008-2379

redhat/squirrelmailSquirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which c…

medium
5
First published (updated )
CVE-2008-3663

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailCode Injection

medium
6.8
First published (updated )
CVE-2007-6348

Squirrelmail Gpg PluginThe G/PGP (GPG) Plugin 2.0, and 2.1dev before 20060912, for Squirrelmail allows remote attackers to …

high
7.5
First published (updated )
CVE-2007-3778

Squirrelmail Gpg PluginPHP local file inclusion vulnerability in gpg_pop_init.php in the G/PGP (GPG) Plugin before 20070707…

medium
4.3
First published (updated )
CVE-2007-3779

Squirrelmail Gpg PluginMultiple directory traversal vulnerabilities in the G/PGP (GPG) Plugin 2.0, and 2.1dev before 200706…

medium
5.5
First published (updated )
CVE-2006-4169

Squirrelmail Gpg PluginUnspecified vulnerability in the G/PGP (GPG) Plugin 2.0 for Squirrelmail 1.4.10a allows remote authe…

medium
6.5
First published (updated )
CVE-2007-3634

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailMultiple unspecified vulnerabilities in the G/PGP (GPG) Plugin 2.1 for Squirrelmail allow remote att…

high
7.5
First published (updated )
CVE-2007-3636

Squirrelmail SquirrelmailMultiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2.1 for Squirrelmail might all…

medium
4.3
First published (updated )
CVE-2007-3635

Squirrelmail SquirrelmailCSRF

high
7.5
First published (updated )
CVE-2007-2631

Squirrelmail SquirrelmailCSRF

medium
5
First published (updated )
CVE-2007-2589

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2007-1262

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailXSS

medium
6.8
First published (updated )
CVE-2006-6142

Squirrelmail SquirrelmailDynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remot…

medium
6.4
First published (updated )
CVE-2006-4019

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2006-3665

Squirrelmail SquirrelmailXSS

low
2.6
First published (updated )
CVE-2006-3174

Squirrelmail SquirrelmailPHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and earlier, i…

high
7.5
First published (updated )
CVE-2006-2842

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2006-0188

Squirrelmail SquirrelmailXSS

medium
4.3
First published (updated )
CVE-2006-0195

Squirrelmail SquirrelmailCRLF Injection

medium
5
First published (updated )
CVE-2006-0377

Squirrelmail Gpg PluginThe G/PGP (GPG) Plugin 2.1 and earlier for Squirrelmail allow remote authenticated users to execute …

critical
9.3
First published (updated )
CVE-2005-1924

Squirrelmail Address Add PluginXSS

medium
4.3
First published (updated )
CVE-2005-3128

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203