MidnightBSD

Advisories for paul_lesniewsk

CVE-2012-0323 MEDIUM

Cross-site scripting (XSS) vulnerability in the Autocomplete plugin before 3.0 for SquirrelMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
paul_lesniewsk autocomplete 1.2
paul_lesniewsk autocomplete *
paul_lesniewsk autocomplete 1.0
paul_lesniewsk autocomplete 1.1
paul_lesniewsk autocomplete 1.3
paul_lesniewsk autocomplete 2.0