CVE-2007-2589 in SquirrelMail信息

摘要

由 VulDB • 2026-06-07

SquirrelMail 1.4.0 至 1.4.9a 版本中 compose.php 文件存在跨站请求伪造(CSRF)漏洞,远程攻击者可通过 IMG 元素的 SRC 属性中的特定数据,以任意用户身份发送电子邮件。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!