Cross-Site Scripting and Squirrelmail plugin
Renaud Deraison
deraison at nessus.org
Fri Sep 26 14:55:43 EDT 2003
On Fri, Sep 26, 2003 at 11:36:32AM -0400, Gabriele Notari wrote:
> I have a question about the behaviour of the plugin #11415
> (SquirrelMail's cross site scripting).
[...]
> This code doesn't seems to be interpreted by the browser,
> nevertheless its presence is considered more dangerous,
> resulting in a "security hole". Is there anyone who can
> explain this thing?
This was fixed a while ago - update your plugins and try again.
-- Renaud
More information about the Nessus
mailing list