Multiple unspecified vulnerabilities in Horde Groupware Webmail before Edition 1.1.1 (final) have unknown impact and attack vectors related to "unescaped output," possibly cross-site scripting (XSS), in the (1) object browser and (2) contact view.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:49
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://lists.horde.org/archives/announce/2008/000420.html - Patch | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/44479 - |
Information
Published : 2008-08-13 01:41
Updated : 2024-11-21 00:49
NVD link : CVE-2008-3650
Mitre link : CVE-2008-3650
CVE.ORG link : CVE-2008-3650
JSON object : View
Products Affected
horde
- groupware_webmail_edition
CWE