• info
• discussion
• exploit
• solution
• references

SquirrelMail Autocomplete Plugin Email Addresses Cross Site Scripting Vulnerability

To exploit this issue, an attacker must entice an unsuspecting user to follow a malicious URI.