Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
functions/mime.php in SquirrelMail before 1.4.18 does not protect the application's content from Cascading Style Sheets (CSS) positioning in HTML e-mail messages, which allows remote attackers to spoof the user interface, and conduct cross-site scripting (XSS) and phishing attacks, via a crafted message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SquirrelMail 'functions/mime.php'多个安全漏洞
Vulnerability Description
SquirrelMail是一款PHP编写的WEBMAIL程序。 SquirrelMail的1.4.18之前版本中的functions/mime.php存在多个安全漏洞,允许恶意用户执行跨站脚本、会话固定和网络钓鱼攻击。没有正确地过滤对邮件的输入便显示给了用户,在打开特制邮件消息时可能通过跨站脚本覆盖GUI界面元素。
CVSS Information
N/A
Vulnerability Type
N/A