Horde : Security Vulnerabilities, CVEs, Published In 2010 (XSS)
Cross-site scripting (XSS) vulnerability in util/icon_browser.php in the Horde Application Framework before 3.3.9 allows remote attackers to inject arbitrary web script or HTML via the subdir parameter.
Max CVSS
4.3
EPSS Score
0.87%
Published
2010-11-09
Updated
2011-07-12
1 vulnerabilities found