CVE-2005-0104
Description
Cross-site scripting (XSS) vulnerability in webmail.php in SquirrelMail before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via certain integer variables.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
23cpe:2.3:a:squirrelmail:squirrelmail:1.0.4:*:*:*:*:*:*:*+ 21 more
- cpe:2.3:a:squirrelmail:squirrelmail:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.11:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.3a:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:squirrelmail:squirrelmail:1.44:*:*:*:*:*:*:*
- Range: <1.4.4
Patches
Vulnerability mechanics
Root cause
"Missing input sanitization of integer variables in webmail.php allows XSS when register_globals is enabled."
Attack vector
An attacker can inject arbitrary web script or HTML via certain integer variables passed to `webmail.php`. Because `register_globals` is enabled, the attacker's crafted URL parameters become directly accessible as variables in the script without proper sanitization, allowing the injection to be reflected in the browser of a victim who clicks the malicious link. [CWE-79]
Affected code
The vulnerability resides in `src/webmail.php` in SquirrelMail versions before 1.4.4. The advisory states the XSS issue is only exploitable when PHP's `register_globals` setting is enabled.
What the fix does
The advisory does not include a patch diff, but states that upgrading to SquirrelMail 1.4.4 resolves the issue. The fix likely involves sanitizing or validating the integer variables in `webmail.php` to prevent script injection, and may also include hardening against reliance on `register_globals`.
Preconditions
- configPHP register_globals must be set to On
- inputAttacker must craft a URL with malicious integer parameters
Generated on Jun 16, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
11- lists.apple.com/archives/security-announce/2005/Mar/msg00000.htmlnvdPatchVendor Advisory
- secunia.com/advisories/13962/nvdPatchVendor Advisory
- secunia.com/advisories/14096nvdPatchVendor Advisory
- www.debian.org/security/2005/dsa-662nvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2005-099.htmlnvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2005-135.htmlnvdPatchVendor Advisory
- www.squirrelmail.org/security/issue/2005-01-20nvdPatchVendor Advisory
- marc.infonvd
- www.gentoo.org/security/en/glsa/glsa-200501-39.xmlnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/19036nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10568nvd
News mentions
0No linked articles in our index yet.