CVE-2004-0520

Cross-site scripting (XSS) vulnerability in mime.php for SquirrelMail before 1.4.3 allows remote attackers to insert arbitrary HTML and script via the content-type mail header, as demonstrated using read_body.php.

Date published : 2004-06-03

http://www.securityfocus.com/bid/10439

http://marc.info/?l=bugtraq&m=108611554415078&w=2