Homepage

squirrelmail vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the squirrelmail package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Deserialization of Untrusted Data

*
  • C
Deserialization of Untrusted Data

*
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u4
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • M
Cross-site Scripting (XSS)

<2:1.4.23~svn20120406-2+deb8u3
  • H
Directory Traversal

<2:1.4.23~svn20120406-2+deb8u2
  • H
Improper Input Validation

<2:1.4.23~svn20120406-2+deb8u1
  • M
Arbitrary Code Injection

<2:1.4.22-1
  • M
Cross-site Request Forgery (CSRF)

<2:1.4.22-1
  • M
Cross-site Scripting (XSS)

<2:1.4.22-1
  • M
Improper Input Validation

<2:1.4.22-1
  • M
Cross-site Scripting (XSS)

<2:1.4.22-1
  • M
Resource Management Errors

<2:1.4.21-1
  • M
Access Restriction Bypass

<2:1.4.21-1
  • M
Cross-site Request Forgery (CSRF)

<2:1.4.20~rc2-1
  • M
CVE-2009-1381

<2:1.4.19-1
  • M
Improper Authentication

<2:1.4.18-1
  • M
Arbitrary Code Injection

<2:1.4.18-1
  • M
Cross-site Scripting (XSS)

<2:1.4.18-1
  • M
Cross-site Scripting (XSS)

<2:1.4.18-1
  • M
Cross-site Scripting (XSS)

<2:1.4.15-4
  • M
Cryptographic Issues

<2:1.4.15-3
  • M
Cross-site Request Forgery (CSRF)

<2:1.4.10a-1
  • M
Cross-site Scripting (XSS)

<2:1.4.10a-1
  • M
CVE-2006-6142

<2:1.4.9a-1
  • M
CVE-2006-4019

<2:1.4.8-1
  • M
CVE-2006-3665

<2:1.4.7-1
  • L
CVE-2006-3174

<2:1.4.7-1
  • H
CVE-2006-2842

<2:1.4.7-1
  • M
CVE-2006-0377

<2:1.4.6-1
  • M
CVE-2006-0188

<2:1.4.6-1
  • M
CVE-2006-0195

<2:1.4.6-1
  • M
CVE-2005-2095

<2:1.4.4-6sarge1
  • M
CVE-2005-1769

<2:1.4.4-6sarge1
  • M
CVE-2004-1036

<2:1.4.3a-3
  • H
CVE-2005-0152

<1:1.2.7-1
  • M
CVE-2005-0075

<2:1.4.4-1
  • M
CVE-2005-0104

<2:1.4.4
  • H
Arbitrary Code Injection

<2:1.4.4-1
  • C
CVE-2004-0521

<2:1.4.3a-0.1
  • M
CVE-2004-0520

<2:1.4.3a-0.1
  • M
CVE-2004-0519

<2:1.4.3a-0.1
  • M
CVE-2004-0639

<2:1.4.3a-0.1
  • H
CVE-2003-0990

<1.4.2
  • M
CVE-2003-0160

<1:1.2.11
  • H
CVE-2002-1650

<1:1.2.3
  • H
CVE-2002-1648

<1:1.2.3
  • M
CVE-2002-1649

<1:1.2.3
  • M
CVE-2002-1341

<1:1.3.2-2
  • M
CVE-2002-1276

<1:1.2.8-1.1
  • H
CVE-2002-1131

<1:1.2.8-1.1
  • M
CVE-2002-1132

<1:1.2.8-1.1