Squirrelmail : Security Vulnerabilities, CVEs, Published In 2008 CVSS score >= 5
Squirrelmail 1.4.15 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier for remote attackers to capture this cookie.
Max CVSS
5.0
EPSS Score
0.46%
Published
2008-09-24
Updated
2018-10-11
1 vulnerabilities found