Please make sure that you can reproduce issue in 1.4.8.
SquirrelMail 1.4.5 version is very old and newer versions
have lots of fixes that fix html sanitizing.
How does invalid mailbox name error lead to SQL injection?
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
This Tracker item was closed automatically by the system. It was
previously set to a Pending status, and the original submitter
did not respond within 14 days (the time period specified by
the administrator of this Tracker).
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Logged In: YES
user_id=225877
Please make sure that you can reproduce issue in 1.4.8.
SquirrelMail 1.4.5 version is very old and newer versions
have lots of fixes that fix html sanitizing.
How does invalid mailbox name error lead to SQL injection?
Logged In: YES
user_id=225877
Please provide more information about your issue or tracker
will close.
It is impossible to understand your problem if you pop short
notice about something and ignore questions about it.
Logged In: YES
user_id=1312539
This Tracker item was closed automatically by the system. It was
previously set to a Pending status, and the original submitter
did not respond within 14 days (the time period specified by
the administrator of this Tracker).