Squirrelmail : Security Vulnerabilities, CVEs, Published In 2011 (CSRF)
Multiple cross-site request forgery (CSRF) vulnerabilities in SquirrelMail 1.4.21 and earlier allow remote attackers to hijack the authentication of unspecified victims via vectors involving (1) the empty trash implementation and (2) the Index Order (aka options_order) page, a different issue than CVE-2010-4555.
Max CVSS
6.8
EPSS Score
0.30%
Published
2011-07-17
Updated
2017-08-29
1 vulnerabilities found