Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.


Entered Topic
2018-03-17 SquirrelMail -- post-authentication access privileges
2017-08-22 SquirrelMail -- post-authentication remote code execution
2008-12-04 squirrelmail -- Cross site scripting vulnerability
2008-09-23 squirrelmail -- Session hijacking vulnerability
2007-05-21 squirrelmail -- Cross site scripting in HTML filter
2006-08-12 squirrelmail -- random variable overwrite vulnerability
2006-06-05 squirrelmail -- plugin.php local file inclusion vulnerability
2006-02-24 squirrelmail -- multiple vulnerabilities
2005-09-17 squirrelmail -- _$POST variable handling allows for various attacks
2005-06-18 squirrelmail -- Several cross site scripting vulnerabilities
2005-06-01 squirrelmail -- XSS and remote code injection vulnerabilities
2004-11-12 squirrelmail -- cross site scripting vulnerability