> The changelog at http://www.squirrelmail.org/changelog.php says for 1.4.6:
> - Security: Fix possible cross site scripting through the right_main
> parameter of webmail.php. This now uses a whitelist of acceptable
> values. [CVE-2006-0188]
Hello Jeff,
Thanks, I'm aware of it. I'm awai
Package: squirrelmail
Version: 2:1.4.4-7
Severity: important
The changelog at http://www.squirrelmail.org/changelog.php says for 1.4.6:
- Security: Fix possible cross site scripting through the right_main
parameter of webmail.php. This now uses a whitelist of acceptable
values. [CVE-2006
2 matches
Mail list logo
