DescriptionDynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote attackers to overwrite arbitrary program variables and read or write the attachments and preferences of other users.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SR:2006:023, published Wed, 27 Sep 2006 14:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 05:08:36 2013
CVE page last modified: Fri Oct 7 12:45:34 2022