CVE-2002-1132 in SquirrelMailinfo

Summary

SquirrelMail 1.2.7 and earlier allows remote attackers to determine the absolute pathname of the options.php script via a malformed optpage file argument, which generates an error message when the file cannot be included in the script.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Disclosure

10/04/2002

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.3

EPSS

0.00619

CTI

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1132
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1132
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1132/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!