Security Advisory

CVE-2009-1581

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-05-14 17:00:00

Last updated 2024-08-07 05:20:33

Assigner mitre

State PUBLISHED

Description

functions/mime.php in SquirrelMail before 1.4.18 does not protect the applications content from Cascading Style Sheets (CSS) positioning in HTML e-mail messages, which allows remote attackers to spoof the user interface, and conduct cross-site scripting (XSS) and phishing attacks, via a crafted message.

← Browse all CVEs View on cve.org ↗