CVE Kennung:	CAN-2005-3128
Beschreibung:	Cross-site scripting (XSS) vulnerability in add.php in Address Add Plugin 1.9 and 2.0 for Squirrelmail allows remote attackers to inject arbitrary web script or HTML via the IMG tag.
Test Kennungen:	Nicht verfügbar
Querverweise:	Common Vulnerability Exposure (CVE) ID: CVE-2005-3128 http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html BugTraq ID: 14973 http://www.securityfocus.com/bid/14973 BugTraq ID: 25159 http://www.securityfocus.com/bid/25159 Bugtraq: 20050928 SquirrelMail Address Add Plugin XSS (Google Search) http://marc.info/?l=bugtraq&m=112801672520766&w=2 http://www.mandriva.com/security/advisories?name=MDKSA-2005:178 http://moritz-naumann.com/adv/0002/sqmadd/0002.txt http://securitytracker.com/id?1014988 http://secunia.com/advisories/16987/ http://secunia.com/advisories/26235 http://www.vupen.com/english/advisories/2007/2732 XForce ISS Database: squirrelmail-add-xss(22453) https://exchange.xforce.ibmcloud.com/vulnerabilities/22453