Squirrelmail : Security Vulnerabilities, CVEs, Published In 2007 (Directory traversal)
Multiple directory traversal vulnerabilities in the G/PGP (GPG) Plugin 2.0, and 2.1dev before 20070614, for Squirrelmail allow remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the help parameter to (1) gpg_help.php or (2) gpg_help_base.php.
Max CVSS
5.5
EPSS Score
0.56%
Published
2007-07-15
Updated
2017-07-20
1 vulnerabilities found