CVE-2007-2631

Publication date 13 May 2007

Last updated 17 July 2025

Ubuntu priority

Medium

Why this priority?

Description

Cross-site request forgery (CSRF) vulnerability in SquirrelMail 1.4.8-4.fc6 and earlier allows remote attackers to perform unspecified actions as arbitrary users via unspecified vectors. NOTE: this issue might overlap CVE-2007-2589 or CVE-2002-1648.

Status

Package Ubuntu Release Status
squirrelmail 7.04 feisty
Fixed 1.4.9a-1ubuntu0.1
6.10 edgy
Fixed 1.4.8-1ubuntu0.1
6.06 LTS dapper
Fixed 1.4.6-1ubuntu0.1

References

Other references

Access our resources on patching vulnerabilities