VYPR
Unrated severityNVD Advisory· Published Aug 11, 2006· Updated Jun 16, 2026

CVE-2006-4019

CVE-2006-4019

Description

Dynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote attackers to overwrite arbitrary program variables and read or write the attachments and preferences of other users.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16
  • cpe:2.3:a:squirrelmail:squirrelmail:1.4.0:*:*:*:*:*:*:*+ 15 more
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.3a:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_r3:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.3_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.44:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.4_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.6_rc1:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4.7:*:*:*:*:*:*:*
    • cpe:2.3:a:squirrelmail:squirrelmail:1.4_rc1:*:*:*:*:*:*:*
    • (no CPE)range: 1.4.0 - 1.4.7

Patches

Vulnerability mechanics

References

29

News mentions

0

No linked articles in our index yet.