Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2009-1578
Description:Multiple cross-site scripting (XSS) vulnerabilities in SquirrelMail before 1.4.18 and NaSMail before 1.7 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) certain encrypted strings in e-mail headers, related to contrib/decrypt_headers.php; (2) PHP_SELF; and (3) the query string (aka QUERY_STRING).
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-1578
BugTraq ID: 34916
Debian Security Information: DSA-1802 (Google Search)
RedHat Security Advisories: RHSA-2009:1066
XForce ISS Database: squirrelmail-decryptheaders-xss(50460)
XForce ISS Database: squirrelmail-phpself-xss(50459)

© 1998-2021 E-Soft Inc. All rights reserved.