man, 06.12.2004 kl. 12.07 skrev Tomas Kuliavas:
> > Could any of the developers comment on the following urls, reported it
> > Saturday's vuln, please?
>
> These announcement are made by third party squirrelmail packagers. They
> provide link to announcement made by SquirrelMail developers. Packa
> Could any of the developers comment on the following urls, reported it
> Saturday's vuln, please?
These announcement are made by third party squirrelmail packagers. They
provide link to announcement made by SquirrelMail developers. Packagers
inform public about exploit fixes in their packages. S
Could any of the developers comment on the following urls, reported it
Saturday's vuln, please?
_
"Joost Pol noticed[2] that SquirrelMail is prone to a cross site
scripting issue in the decoding of encoded text in certain headers.
SquirrelMail correctly decodes
