Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1320
cve-2005-1320
xss
vulnerability
horde mnemo note manager
web script
html
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.6%
Cross-site scripting (XSS) vulnerability in Horde Mnemo Note Manager before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via the parent’s frame page title.
Affected configurations
Node
hordemnemoMatch1.1
ORhordemnemoMatch1.1.1
ORhordemnemoMatch1.1.2
ORhordemnemoMatch1.1.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| horde:mnemo | horde mnemo | eq | 1.1 |
| horde:mnemo | horde mnemo | eq | 1.1.1 |
| horde:mnemo | horde mnemo | eq | 1.1.2 |
| horde:mnemo | horde mnemo | eq | 1.1.3 |
Related
nvd
nvd
CVE-2005-1320
2005-05-02 04:00:00
nessus
nessus
Horde Mnemo common-footer.inc Parent Frame Page XSS
2005-04-26 00:00:00
ubuntucve
ubuntucve
CVE-2005-1320
2005-05-02 00:00:00
cvelist
cvelist
CVE-2005-1320
2005-04-27 04:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200505-01 (Horde)
2008-09-24 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.7 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.6%
Related for CVE-2005-1320