Cross-site scripting (XSS) vulnerability in the Autocomplete plugin before 3.0 for SquirrelMail allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-79,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| paul_lesniewsk | autocomplete | 1.2 |
| paul_lesniewsk | autocomplete | * |
| paul_lesniewsk | autocomplete | 1.0 |
| paul_lesniewsk | autocomplete | 1.1 |
| paul_lesniewsk | autocomplete | 1.3 |
| paul_lesniewsk | autocomplete | 2.0 |