Horde : Security Vulnerabilities, CVEs, Published In May 2005 (XSS)
Cross-site scripting (XSS) vulnerability in Horde Nag Task List Manager before 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Vacation module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Mnemo Note Manager before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.26%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde IMP Webmail client before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Forwards E-Mail Forwarding Manager before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Accounts module before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.26%
Published
2005-05-02
Updated
2008-09-10
Cross-site scripting (XSS) vulnerability in Horde Turba module before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Kronolith module before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title.
Max CVSS
4.3
EPSS Score
0.22%
Published
2005-05-02
Updated
2008-09-05
Cross-site scripting (XSS) vulnerability in Horde 3.0.4 before 3.0.4-RC2 allows remote attackers to inject arbitrary web script or HTML via the parent frame title.
Max CVSS
4.3
EPSS Score
0.25%
Published
2005-05-02
Updated
2008-09-05
Multiple cross-site scripting (XSS) vulnerabilities in Horde 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) group parameter to prefs.php or (2) url parameter to index.php.
Max CVSS
4.3
EPSS Score
0.78%
Published
2005-05-02
Updated
2017-07-11
11 vulnerabilities found