11 matches found
EUVD-2008-3809
Malware in sbrugna...
SUSE CVE-2008-3330
Cross-site scripting XSS vulnerability in services/obrowser/index.php in Horde 3.2 and Turba 2.2 allows remote attackers to inject arbitrary web script or HTML via the contact name...
CVE-2008-3823
Cross-site scripting XSS vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message...
CVE-2008-3823
Cross-site scripting XSS vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message...
Cross site scripting
Cross-site scripting XSS vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message...
CVE-2008-3823
Cross-site scripting XSS vulnerability in MIME/MIME/Contents.php in the MIME library in Horde 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via the filename of a MIME attachment in an e-mail message...
CVE-2008-3824
Cross-site scripting XSS vulnerability in 1 TextFilter/Filter/xss.php in Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2 and 2 externalinput.php in Popoon r22196 and earlier allows remote attackers to inject arbitrary web script or HTML by using / slash characters as replacements for spaces in an...
CVE-2008-3823
Technical details of CVE-2008-3823 are not publicly available in the provided connected documents. The Initial Description indicates an XSS in Horde's MIME library (MIME/Contents.php) for attachments in emails, but no further specifics or fixes are included here. Monitor for updates.
CVE-2008-3824
CVE-2008-3824 affects Horde 3.1.x before 3.1.9 and 3.2.x before 3.2.2, and Popoon (externalinput.php in Popoon r22196 and earlier). It is a cross-site scripting (XSS) vulnerability allowing remote attackers to inject arbitrary web script or HTML by using / characters as replacements for spaces in...
CVE-2008-3330
Cross-site scripting XSS vulnerability in services/obrowser/index.php in Horde 3.2 and Turba 2.2 allows remote attackers to inject arbitrary web script or HTML via the contact name...
CVE-2008-3330
CVE-2008-3330 is an XSS vulnerability in Horde 3.2 and Turba 2.2, exploitable via the contact name in services/obrowser/index.php. The OpenVAS entries describe Horde Turba HTML/HTML-injection vulnerabilities due to insufficient input sanitization, with affected versions including Horde 3.1.7, 3.2...