2 matches found
CVE-2007-1679
Multiple cross-site scripting XSS vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in 1 imp/search.php and 2 ingo/rule.php. NOTE: this issue has been disputed by the vendor, noting that the search.php...
CVE-2007-1679
The CVE-2007-1679 entry concerns multiple XSS vulnerabilities in Horde Groupware Webmail 1.0, specifically in imp/search.php and ingo/rule.php. The issue is that remote authenticated users can inject script/HTML via unspecified vectors; however, the vendor disputes the existence of the search.php...