Reported September 28, 2005 by Moritz Naumann
SquirrelMail “Address Add” Plugin, version 1.4 to 2.0
SquirrelMail is a popular cross-platform Web-based email interface. A plug-in for SquirrelMail, Address Add, is vulnerable to cross-site scripting attacks. A successful attack might allow an intruder to obtain a person's cookie and session information.