Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2009-1580

Session fixation vulnerability in SquirrelMail before 1.4.18 allows remote attackers to hijack web sessions via a crafted cookie.

  • Published: May 14, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-1580
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:N

CWEs:

OWASP TOP 10:

Software From Fixed in
squirrelmail / squirrelmail 1.4.2 1.4.2.x
squirrelmail / squirrelmail 0.4 0.4.x
squirrelmail / squirrelmail 1.0.6 1.0.6.x
squirrelmail / squirrelmail 1.0.5 1.0.5.x
squirrelmail / squirrelmail 0.3 0.3.x
squirrelmail / squirrelmail 0.4pre2 0.4pre2.x
squirrelmail / squirrelmail 1.2.0-rc3 1.2.0-rc3.x
squirrelmail / squirrelmail 1.1.0 1.1.0.x
squirrelmail / squirrelmail 1.0pre2 1.0pre2.x
squirrelmail / squirrelmail 0.3.1 0.3.1.x
squirrelmail / squirrelmail 0.1.2 0.1.2.x
squirrelmail / squirrelmail 1.2.7 1.2.7.x
squirrelmail / squirrelmail 1.0.1 1.0.1.x
squirrelmail / squirrelmail 0.2.1 0.2.1.x
squirrelmail / squirrelmail 1.4.12 1.4.12.x
squirrelmail / squirrelmail 1.4.9a 1.4.9a.x
squirrelmail / squirrelmail 1.4.6 1.4.6.x
squirrelmail / squirrelmail 1.4.3-r3 1.4.3-r3.x
squirrelmail / squirrelmail 1.2.0 1.2.0.x
squirrelmail / squirrelmail 1.4.7 1.4.7.x
squirrelmail / squirrelmail 1.2.9 1.2.9.x
squirrelmail / squirrelmail 0.1 0.1.x
squirrelmail / squirrelmail 1.4.15 1.4.15.x
squirrelmail / squirrelmail 1.2.2 1.2.2.x
squirrelmail / squirrelmail 0.5pre2 0.5pre2.x
squirrelmail / squirrelmail 1.4.16 1.4.16.x
squirrelmail / squirrelmail 1.4-rc1 1.4-rc1.x
squirrelmail / squirrelmail 1.1.2 1.1.2.x
squirrelmail / squirrelmail 1.4.4-rc1 1.4.4-rc1.x
squirrelmail / squirrelmail 0.3pre2 0.3pre2.x
squirrelmail / squirrelmail 1.4.3 1.4.3.x
squirrelmail / squirrelmail 0.1.1 0.1.1.x
squirrelmail / squirrelmail 1.4.3-rc1 1.4.3-rc1.x
squirrelmail / squirrelmail 1.2.1 1.2.1.x
squirrelmail / squirrelmail 1.4.1 1.4.1.x
squirrelmail / squirrelmail 1.4.9 1.4.9.x
squirrelmail / squirrelmail 1.2 1.2.x
squirrelmail / squirrelmail 1.4.0 1.4.0.x
squirrelmail / squirrelmail 1.4.0-rc1 1.4.0-rc1.x
squirrelmail / squirrelmail 1.4 1.4.x
squirrelmail / squirrelmail 1.1.3 1.1.3.x
squirrelmail / squirrelmail 1.4.0-rc2a 1.4.0-rc2a.x
squirrelmail / squirrelmail 1.44 1.44.x
squirrelmail / squirrelmail 1.2.4 1.2.4.x
squirrelmail / squirrelmail 0.5pre1 0.5pre1.x
squirrelmail / squirrelmail 1.2.3 1.2.3.x
squirrelmail / squirrelmail 1.4.3a 1.4.3a.x
squirrelmail / squirrelmail 1.0.2 1.0.2.x
squirrelmail / squirrelmail 1.0.4 1.0.4.x
squirrelmail / squirrelmail 1.4.6-rc1 1.4.6-rc1.x
squirrelmail / squirrelmail 1.0pre1 1.0pre1.x
squirrelmail / squirrelmail 1.2.6 1.2.6.x
squirrelmail / squirrelmail 1.4.15-rc1 1.4.15-rc1.x
squirrelmail / squirrelmail 1.4.8.4fc6 1.4.8.4fc6.x
squirrelmail / squirrelmail 1.4.10a 1.4.10a.x
squirrelmail / squirrelmail 1.4.4 1.4.4.x
squirrelmail / squirrelmail 1.4.3aa 1.4.3aa.x
squirrelmail / squirrelmail 0.3pre1 0.3pre1.x
squirrelmail / squirrelmail 1.2.10 1.2.10.x
squirrelmail / squirrelmail 0.4pre1 0.4pre1.x
squirrelmail / squirrelmail 1.2.5 1.2.5.x
squirrelmail / squirrelmail 1.4.11 1.4.11.x
squirrelmail / squirrelmail 1.0.3 1.0.3.x
squirrelmail / squirrelmail 1.3.0 1.3.0.x
squirrelmail / squirrelmail 1.0 1.0.x
squirrelmail / squirrelmail 0.2 0.2.x
squirrelmail / squirrelmail 1.2.8 1.2.8.x
squirrelmail / squirrelmail 1.2.11 1.2.11.x
squirrelmail / squirrelmail 0.5 0.5.x
squirrelmail / squirrelmail 1.4.5 1.4.5.x
squirrelmail / squirrelmail - 1.4.17.x
squirrelmail / squirrelmail 1.0pre3 1.0pre3.x