CVE-2004-0520

Publication date

2004-06-03 04:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.