VDB
CVE-2005-0152
CVE-2005-0152
PUBLISHED
CVSS 7.5 HIGH
PHP remote file inclusion vulnerability in Squirrelmail 1.2.6 allows remote attackers to execute arbitrary code via "URL manipulation."
EPSS 5.71% · 90.6th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
5.71%
90.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| squirrelmail | squirrelmail | 1.2.6 |
Timeline
- Feb 2, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- VU#203214 third-party-advisory
- 14096 third-party-advisory
- http://ftp.debian.org/debian/dists/stable-proposed-updates/squirrelmail_1.2.6-2_i386.changes url
- DSA-662 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2005-0152 advisory