CVE-2002-1131

Name of the Vulnerable Software and Affected Versions: SquirrelMail versions 1.2.7 and earlier

Description: The issue allows remote attackers to execute scripts as other web users. This is achieved through cross-site scripting vulnerabilities in various PHP files, including "addressbook.php", "options.php", "search.php", and "help.php".

Recommendations: For SquirrelMail versions 1.2.7 and earlier, update to a version later than 1.2.7 to resolve the issue. As a temporary workaround, consider restricting access to the affected PHP files until a patch is available.