Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:20740
HistoryJul 09, 2019 - 6:36 a.m.

Code Injection

2019-07-0906:36:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7

EPSS

0.006

Percentile

78.7%

JSON

SquirrelMail is vulnerable to code injection. With register_globals enabled, an attacker could inject arbitrary code via custom preference handles in prefs.php and may cause the code to be executed with application privilege.

Related

cvelist 1
nvd 1
cve 1
ubuntucve 1
gentoo 1
nessus 5
openvas 5
redhat 2
freebsd 1
cvelist
cvelist
CVE-2005-0075
2005-02-06 05:00:00
nvd
nvd
CVE-2005-0075
2005-01-29 05:00:00
cve
cve
CVE-2005-0075
2005-02-06 05:00:00
ubuntucve
ubuntucve
CVE-2005-0075
2005-01-29 00:00:00
gentoo
gentoo
SquirrelMail: Multiple vulnerabilities
2005-01-28 00:00:00
nessus
nessus
GLSA-200501-39 : SquirrelMail: Multiple vulnerabilities
2005-02-14 00:00:00
RHEL 4 : squirrelmail (RHSA-2005:099)
2005-02-22 00:00:00
SquirrelMail < 1.4.4 Multiple Vulnerabilities
2005-01-24 00:00:00
openvas
openvas
SquirrelMail < 1.4.4 XSS Vulnerabilities
2005-11-03 00:00:00
Gentoo Security Advisory GLSA 200501-39 (SquirrelMail)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200501-39 (SquirrelMail)
2008-09-24 00:00:00
redhat
redhat
(RHSA-2005:135) squirrelmail security update
2005-02-10 00:00:00
(RHSA-2005:099) squirrelmail security update
2005-02-15 00:00:00
freebsd
freebsd
squirrelmail -- XSS and remote code injection vulnerabilities
2005-01-29 00:00:00

EPSS

0.006

Percentile

78.7%

JSON
Related for VERACODE:20740
cvelist1nvd1cve1ubuntucve1gentoo1nessus5openvas5redhat2freebsd1