CVE-2002-0516 | Vulnerability Database | Aqua Security

SquirrelMail 1.2.5 and earlier allows authenticated SquirrelMail users to execute arbitrary commands by modifying the THEME variable in a cookie.

Name	Vendor	Start Version	End Version
Squirrelmail	Squirrelmail	1.2.0 (including)	1.2.0 (including)
Squirrelmail	Squirrelmail	1.2.1 (including)	1.2.1 (including)
Squirrelmail	Squirrelmail	1.2.2 (including)	1.2.2 (including)
Squirrelmail	Squirrelmail	1.2.3 (including)	1.2.3 (including)
Squirrelmail	Squirrelmail	1.2.4 (including)	1.2.4 (including)
Squirrelmail	Squirrelmail	1.2.5 (including)	1.2.5 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0516
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html