CVE-2005-1308

Published: Apr 15, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

SqWebMail allows remote attackers to inject arbitrary web script or HTML via CRLF sequences in the redirect parameter followed by the desired script or HTML.

Affected (9)

Products: Inter7: Sqwebmail

Inter7

1 product

Sqwebmail

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Inter7 Sqwebmail	Version 3.4.1
Inter7 Sqwebmail	Version 3.5.0
Inter7 Sqwebmail	Version 3.5.1
Inter7 Sqwebmail	Version 3.5.2
Inter7 Sqwebmail	Version 3.5.3
Inter7 Sqwebmail	Version 3.6.0
Inter7 Sqwebmail	Version 3.6.1
Inter7 Sqwebmail	Version 4.0.4_2004-05-24
Inter7 Sqwebmail	Version 4.0.5

References (4)

http://secunia.com/advisories/15119

Source: cve@mitre.org

http://www.securityfocus.com/bid/13374

Source: cve@mitre.org

http://secunia.com/advisories/15119

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/13374

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.