IT Pro Today is part of the Informa Tech Division of Informa PLC

INFORMA PLC|ABOUT US|INVESTOR RELATIONS|TALENT

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Documents Online Events Advertise About

Newsletter Sign-Up

Cloud

Recent in Cloud

SEE ALL Cloud

the word "cloud" written under a cloud

Cloud Computing

Want to Gain Control of Your Cloud Costs? Give Engineering More Ownership Want to Gain Control of Your Cloud Costs? Give Engineering More Ownership

byIndustry Perspectives

Jul 23, 2024

4 Min Read

man holding a lightbulb with "hybrid cloud" written in front of him

Hybrid Cloud

More Enterprises Want Hybrid Cloud, Not Public More Enterprises Want Hybrid Cloud, Not Public

byKelly Teal, Channel Futures

Jul 22, 2024

3 Min Read

Recent in OS

See All OS

microsoft logo on a building

Windows 11

Microsoft in 2024: Top Stories (So Far)Microsoft in 2024: Top Stories (So Far)

byITPro Today Staff

Jul 24, 2024

3 Min Read

microsoft Windows 10 Blue screen of death on a display

Microsoft Windows

Fallout From Faulty Friday CrowdStrike Update Persists Fallout From Faulty Friday CrowdStrike Update Persists

byBecky Bracken, Dark Reading

Jul 22, 2024

2 Min Read

IT Mgmt

Recent in IT Mgmt

See All IT Mgmt

workers collaborate around computers

IT Management

3 Actions to Create an IT Strategic Workforce Plan 3 Actions to Create an IT Strategic Workforce Plan

byGartner Blog Network

Jul 26, 2024

4 Min Read

person lying on a beach while working on a laptop

Career Management

Summertime, and the Zooming Is Easy Summertime, and the Zooming Is Easy

byLisa Schmeiser, No Jitter

Jul 23, 2024

3 Min Read

Career

Recent in Career

See All Career Mgmt

workers collaborate around computers

IT Management

3 Actions to Create an IT Strategic Workforce Plan 3 Actions to Create an IT Strategic Workforce Plan

byGartner Blog Network

Jul 26, 2024

4 Min Read

businesswoman walking on a sidewalk

Career Management

Women VCs Make Gains in Tech Amid DEI Backlash Women VCs Make Gains in Tech Amid DEI Backlash

byBloomberg News

Jul 25, 2024

2 Min Read

Storage

Recent in Storage

See All Data Storage

the word outage and crowdstrike logo on dark background

Disaster Recovery

‘Hug Your IT Folks’: The Crowdstrike Outage Turned Technicians Into Heroes ‘Hug Your IT Folks’: The Crowdstrike Outage Turned Technicians Into Heroes

byThe Washington Post

Jul 25, 2024

6 Min Read

Apache Cassandra logo

Data Storage

Apache Cassandra 5.0: Answering Enterprises' Biggest Questions Apache Cassandra 5.0: Answering Enterprises' Biggest Questions

byIndustry Perspectives

Jul 15, 2024

4 Min Read

Security

Recent in Security

See All IT Security

hand holding the smartphone with logo Ferrari

Attacks & Breaches

Ferrari Narrowly Dodges Deepfake Scam Simulating Deal-Hungry CEO Ferrari Narrowly Dodges Deepfake Scam Simulating Deal-Hungry CEO

byBloomberg News

Jul 26, 2024

3 Min Read

chart showing key AI security vulnerabilities

Vulnerabilities & Threats

AI in Healthcare Demands Vigilant Security Measures AI in Healthcare Demands Vigilant Security Measures

byPoornima Apte

Jul 25, 2024

4 Min Read

Dev

Recent in Dev

See All Software Dev

GitHub logo

Software Development

GitHub Innovation Graph Update Reveals Digital Divide, AI Growth GitHub Innovation Graph Update Reveals Digital Divide, AI Growth

bySean Michael Kerner

Jul 26, 2024

3 Min Read

German Shepherd lying in a doghouse

Software Development

GitLab Customers Hope to Stay Out of the Doghouse if Acquired by Datadog GitLab Customers Hope to Stay Out of the Doghouse if Acquired by Datadog

byForrester Blog Network

Jul 24, 2024

4 Min Read

Recent in DX

See All Digital Transformation

meta logo on smartphone screen laying on computer keyboard

AI & Machine Learning

Meta Halts AI Training in EU, Brazil Amid Regulatory Concerns Meta Halts AI Training in EU, Brazil Amid Regulatory Concerns

byBen Wodecki, Dark Reading

Jul 26, 2024

2 Min Read

binary numbers forming digital background with area dented showing the letters AI

AI & Machine Learning

AI in 2024: Top Stories (So Far)AI in 2024: Top Stories (So Far)

byITPro Today Staff

Jul 25, 2024

3 Min Read

Infrastructure

Recent in Infrastructure

See All Infrastructure

stacks of blocks in digital environment

Linux OS

Top 10 Stories About Compute Engines, Linux of 2024 So Far Top 10 Stories About Compute Engines, Linux of 2024 So Far

byITPro Today Staff

Jul 17, 2024

3 Min Read

Newsletters
How To…?
Industry Perspectives
Business Resources
Reports/Research
Online Events

Live Events
Videos
White Papers
Advertise With Us
About Us

Resource Library

Vulnerabilities & Threats
IT Security

SquirrelMail "Address Add" Plugin Vulnerable to Cross Site Scripting

A plug-in forSquirrelMail, Address Add, is vulnerable to cross-site scriptingattacks. A successful attack might allow an intruder to obtain a person's cookie and session information

ITPro Today

September 29, 2005

1 Min Read

ReportedSeptember 28, 2005 by Moritz Naumann

VERSIONS AFFECTED

SquirrelMail“Address Add” Plugin, version 1.4 to 2.0

DESCRIPTION

SquirrelMailis a popular cross-platform Web-based email interface. A plug-in forSquirrelMail, Address Add, is vulnerable to cross-site scriptingattacks. A successful attack might allow an intruder to obtain aperson's cookie and session information.

VENDOR RESPONSE

The plug-in'sdeveloper, Jimmy Conner, has released AddressAdd 2.1, whichcorrects this problem. Administrators who use the plug-in shouldupgrade to this version. If an upgrade isn't possible, ensure thatusers have Javascript disabled in their browsers or that the AddressAdd plug-in is disabled.