5 matches found
openSUSE Security Update : horde (horde-311)
This update of horde fixes the following vulnerabilities : - CVE-2008-1284: directory traversal allows authenticated user to access and execute arbitrary files - CVE-2008-3330: remotely exploitable XSS - CVE-2008-3824: remotely exploitable XSS %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
[SECURITY] [DSA 1765-1] New horde3 packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1765-1 [email protected] http://www.debian.org/security/ Steffen Joeris April 08, 2009 http://www.debian.org/security/faq -...
CVE-2008-3330
Cross-site scripting XSS vulnerability in services/obrowser/index.php in Horde 3.2 and Turba 2.2 allows remote attackers to inject arbitrary web script or HTML via the contact name...
CVE-2008-3330
CVE-2008-3330 is an XSS vulnerability in Horde 3.2 and Turba 2.2, exploitable via the contact name in services/obrowser/index.php. The OpenVAS entries describe Horde Turba HTML/HTML-injection vulnerabilities due to insufficient input sanitization, with affected versions including Horde 3.1.7, 3.2...
CVE-2008-3330
Cross-site scripting XSS vulnerability in services/obrowser/index.php in Horde 3.2 and Turba 2.2 allows remote attackers to inject arbitrary web script or HTML via the contact name...