← back
CVE-2002-1131

CVE-2002-1131

EPSS 25.8%◆ VulnCheck KEV
Vexday Risk Score
65High priority
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 25.8%KEV nãoPoC públicaNuclei simMetasploit Patch referenciado
Lifecycle
19 Sep 2002Public PoC
24 Sep 2002Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
Cross-site scripting vulnerabilities in SquirrelMail 1.2.7 and earlier allows remote attackers to execute script as other web users via (1) addressbook.php, (2) options.php, (3) search.php, or (4) help.php.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.