FreeBSD : squirrelmail -- XSS vulnerability (7fbfe159-3438-11d9-a9e7-0001020eed82)
High Nessus Plugin ID 37822
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionA SquirrelMail Security Notice reports :
There is a cross site scripting issue in the decoding of encoded text in certain headers. SquirrelMail correctly decodes the specially crafted header, but doesn't sanitize the decoded strings.
SolutionUpdate the affected packages.