Arbitrary HTML Injection and Information Theft in SquirrelMail

Arbitrary HTML Injection and Information Theft in SquirrelMail

CVE-2003-0160 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.2.11 allow remote attackers to inject arbitrary HTML code and steal information from a client's web browser.

Learn more about our Web App Pen Testing.