turba -- Cross site scripting vulnerabilities in several of the address book name and contact data fields

2005-12-11T00:00:00
ID EEEBD55D-6A88-11DA-B96E-000FB586BA73
Type freebsd
Reporter FreeBSD
Modified 2005-12-11T00:00:00

Description

Announce of Turba H3 (2.0.5) (final):

This [2.0.5] is a security release that fixes cross site scripting vulnerabilities in several of the address book name and contact data fields. None of the vulnerabilities can be exploited by unauthenticated users; however, we strongly recommend that all users of Turba 2.0.4 upgrade to 2.0.5 as soon as possible.